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From  the  Commander,  U.S.  Strategic  Command 

Delivering  the  Power  of  Information 

The  late  Edward  R.  Murrow  once  said  that  television  is  only  lights  and  wires  in  a  box  unless 
we  enable  the  technology  with  value-added  information.  In  the  world  of  cyberspace,  our  cul¬ 
ture  must  move  beyond  form  and  format  to  embrace  change.  Culture  change  is  the 
only  way  to  enable  information  collaboration  that  adds  true  value  to  the  lights  and 
wires  of  our  systems.  It  is  the  basic  price  of  admission  to  fully  use,  share,  and  capital¬ 
ize  on  information  and  make  the  best  decisions  in  a  global  environment.  We  can  no 
longer  operate  in  a  traditional  military  mode  where  information  is  locked  down  to  the 
point  it  cannot  be  accessed  by  those  who  are  authorized  and  who  legitimately  need  it.  We  must 
register  databases  and  metadata  so  authorized  users  can  find,  use,  and  distribute  required  data 
rapidly  and  effectively. 

The  theme  of  this  CrossTalk  issue  focuses  on  the  technologies  that  enable  information 
sharing  and  that  are  guided  by  four  critical  goals  of  net-centricity:  to  effectively  build,  populate, 
operate,  and  protect  the  net.  Building  the  net  ensures  the  latest,  most  sophisticated  equipment 
and  technology  to  do  what  is  needed  in  a  speed-of-light  information  world.  Populating  the  net 
ensures  everyone  who  has  information  crucial  to  someone  else  can  make  it  available  quickly. 
Operating  the  net  means  access  to  existing  data,  and  protecting  the  net  is  a  continual  challenge 
to  make  sure  we  maintain  the  edge  over  any  adversary  who  would  determine  to  use  cyberspace 
against  the  interests  of  the  United  States. 

All  of  these  elements  are  crucial  to  successfully  build  an  information  culture  that  shares 
knowledge,  flattens  organizations,  eliminates  stovepipe  mentalities,  and  empowers  a  younger 
generation  at  all  ranks  who  are  becoming  the  hardest  working  and  most  effective  information 
movers.  When  they  all  come  together,  these  elements  allow  more  effective  operations  at  the 
speed  demanded  in  today’s  global  information  environment. 

Cyberspace  is  one  of  the  most  dynamic  and  challenging  environments  for  military  opera¬ 
tions.  We  must  consider  it  in  the  same  way  as  the  sea,  space,  air,  and  terrestrial  environments. 
That  means  assuring  continuous  access  and  finding  a  competitive  edge  to  ensure  we  maintain  a 
free  and  open  environment. 

The  information  realm  is  enabled  by  technologies  we  have  at  our  fingertips.  Success  is  often 
measured  by  the  speed  at  which  we  move  information  and  our  ability  to  use  technology  to  share 
and  capitalize  on  information.  That’s  why  we  must  continue  to  expand  a  collaborative  culture 
among  people  who  know  best  how  to  use  the  technology. 

In  a  transformational  culture,  the  military  mindset  must  be  about  breaking  down  informa¬ 
tion  stovepipes,  and  we  should  no  longer  hold  the  belief  that  information  is  the  protected 
ground  of  only  one  group.  Maintaining  a  controlled-access  mentality  can  be  hazardous  in  a 
world  where  the  need  for  instantaneous  situational  awareness  and  rapid  response  may  be  cru¬ 
cial.  Breaking  traditions  associated  with  stovepiped  and  protected  information  requires  us  to 
understand  that  every  member  of  the  team  must  have  access.  A  participant’s  value  comes  from 
the  information  supplied  rather  than  the  rank  held.  Every  value-added  participant  must  be  able 
to  contribute  to  the  success  of  our  missions  and  objectives.  We  have  worked  very  hard  to  oper¬ 
ate  within  the  necessary  chain  of  command  structure  while  mining  the  equally  necessary  chain 
of  information. 

Flattening  information  activities  helps  create  an  environment  of  fostering  easier  access  and 
availability  as  we  collaborate  and  increase  decision-making  speed.  Decision  speed  and  execution 
is  what  we  strive  for  in  tackling  some  of  the  toughest  challenges  our  nation  has  ever  faced. 
Waiting  for  perfect  information  places  a  commander  behind  the  power  curve.  In  fact,  perfect 
information  after  the  fact  is  useless.  To  increase  speed,  collaborative  tools  must  become  the 
norm.  Every  team  member,  from  airman  to  admiral,  inputs  information  that  becomes  accessi¬ 
ble  to  everyone  with  access  to  authorized  systems. 

It’s  not  easy  to  break  traditional  thinking  and  habits.  Sergeants  and  junior  officers  were 
accustomed  to  clearing  information  through  a  chain  of  command  before  providing  it  to  the 
upper  echelon.  Meeting  challenges,  however,  is  why  we  are  in  business.  That  includes  challenges 
within  our  own  systems.  This  is  why  we  must  continue  pushing  a  responsive  information  envi¬ 
ronment,  rapidly  providing  our  nation’s  senior  leaders  with  the  knowledge  they  need  to  make 
tough  decisions.  The  alternative  is  lights  and  wires  in  a  box. 

General  James  E.  Cartwright 
Commander,  U.S.  Strategic  Command 
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Enabling  Technologies  for  Net-Centricity 
Information  on  Demand 


The  Honorable  John  J.  Grimes 
Department  of  Defense  Chief  Information  Officer 

The  focus  of  net-centric  operations  is  to  provide  a  more  effective  and  efficient force  that  includes  the  warfighter,  the  intelligence 
community,  and  the  business  processes  that  support  and  enable  the  warfighters'  success.  The  ability  to  access  information,  to 
share  that  information,  and  to  collaborate  with  others  is  at  the  heart  of  net-centric  operations.  The  ongoing  transformation 
represents  a  fundamental  change,  a  strategy  that  requires  a  cultural  shift  regarding  how  information  and  information  tech¬ 
nology  is  viewed  and  used. 


We  live  in  a  new  era.  The  relative  pre¬ 
dictability  of  the  Cold  War  is  gone. 
As  the  National  Defense  Strategy  [1] 
states:  Uncertainty  is  the  defining  characteristic 
of  today's  strategic  environment.  The  strategy 
emphasizes  that  we  will  not  know  whom 
we  will  fight,  nor  when,  nor  where,  nor 
how.  As  a  military,  and  as  a  nation,  we 
must  confront  uncertainty  with  agility. 
Our  response  to  unpredictable,  unantici¬ 
pated,  and  unknown  security  challenges  of 
today  and  tomorrow  must  be  to  ensure 
levels  of  agility  never  before  considered 
and  never  before  possible. 

To  support  the  warfighter  in  this 
changing  threat  environment,  the 
Department  of  Defense  (DoD)  is  trans¬ 
forming  by  leveraging  the  power  of  infor¬ 
mation.  Information  and  the  ability  to 
access  it,  share  it,  and  collaborate  it  with 
others  is  at  the  heart  of  net-centric  opera¬ 
tions.  The  recent  Quadrennial  Defense 
Review  (QDR)  [2],  reinforced  the  impor¬ 
tance  of  achieving  net-centricity  and 
called  for  15  major  information  technolo¬ 
gy  (IT)  and  command  and  control  initia¬ 
tives,  and  significantly  increased  efforts  to 
ensure  information  can  be  trusted. 

The  focus  of  the  net-centric  approach 
and  activities  supports  the  DoD’s  trans¬ 
formation  and  the  QDR  goals:  to  provide 
a  more  effective  and  efficient  force.  That 
force  is  not  only  the  warfighter,  but  it  is 
also  the  intelligence  community  and  the 
business  processes  that  enable  the 
warfighters’  success.  Regardless  of  time  or 
place,  the  user  must  be  able  to  say  I  can  get 
the  information  I  need  to  perform  my  mission. 

Atop  the  particular  activities  and  pro¬ 
grams  sits  a  fundamental  change  in  philos¬ 
ophy:  It  is  all  about  the  data.  To  success¬ 
fully  implement  a  secure  enterprise-level 
net-centric  operations  capability  for  the 
warfighter,  we  must  move  away  from 
highly  tailored  programs  that  manipulate 
data  and  move  to  exposing  the  data  in  a 
timely  fashion. 

The  ongoing  transformation  repre¬ 


sents  a  fundamental  change  in  approach  - 
that  is,  a  change  in  both  what  is  being 
done  and  how  it  is  being  accomplished. 
However,  underlying  the  new  strategy  is 
perhaps  a  far  greater  challenge.  There 
must  be  a  dramatic  cultural  shift  with 
regard  to  how  information  is  viewed  and 
used. 

Stewards,  Not  Owners 

Today,  information  is  typically  stored  in 
bins  and  silos  that  are  walled  off  from 
anyone  outside  a  particular  community. 
There  is  not  only  a  sense  of  data  owner¬ 
ship,  but  also  an  enormous  cultural  reluc¬ 
tance  to  share  with  others  outside  a  par¬ 
ticular  community.  Additionally,  existing 
systems  cannot  talk  to  each  other  without 
the  benefit  of  time-consuming,  highly  tai¬ 
lored,  costly,  pre-engineered  interfaces. 
The  approach  to  information  security  is 
not  much  different.  Everything  is  based 
on  predetermined  needs,  despite  the  fact 
that  in  today’s  world  it  is  not  possible  to 
anticipate  what  will  be  needed  nor  by 
whom. 

There  must  be  a  complete  overhaul 
in  how  information  is  considered. 
Instead  of  the  parochial  attitude  that 
information  is  power,  we  must  move  to  a 
culture  that  embraces  and  leverages  the 
power  of  information.  That  rearrangement 
of  words  is  not  a  subtlety  but  the  reflec¬ 
tion  of  a  dramatically  different  culture 
and  environment.  The  regulatory 
demands  of  need  to  know  must  be  met. 
However,  the  culture  must  shift  away 
from  over-interpretation  of  the  require¬ 
ment  and  place  greater  emphasis  on 
understanding  who  else  would  benefit  by 
having  the  information  accessible.  The 
enterprise  must  make  authorized  infor¬ 
mation  sharing  a  priority.  The  impor¬ 
tance  of  need  to  share  and,  more  impor¬ 
tantly,  right  to  know  must  be  recognized. 
An  authorized  user,  in  essence,  has  the 
right  to  know  information  that  is  critical  to 
doing  his  or  her  job.  The  ultimate  objec¬ 


tive  is  to  connect  people  with  informa¬ 
tion. 

The  DoD  Data  Strategy  concentrates 
on  realizing  the  principles  that  data  must 
be  visible,  accessible,  and  understandable 
[3].  An  authorized  and  authenticated  user 
must  be  able  to  discover  that  data  exists, 
pull  it  off  the  network,  and  use  it.  To  do 
so  requires  tagging  of  all  data  with  metada¬ 
ta  and  enterprise-wide  registries  to  enable 
discovery  by  users.  Communities  of  inter¬ 
est  are  forming  across  a  wide  variety  of 
areas,  including  Maritime  Domain 
Awareness,  which  has  improved  the  ability 
to  share  information  across  the  breadth  of 
military,  federal,  state,  local,  and  private 
organizations,  increasing  the  security  of 
our  harbors  and  ports. 

We  must  become  stewards,  not  own¬ 
ers,  of  information. 

Enterprise,  Not  Stovepipe 

Today’s  data  silos  support  a  mentality  in 
which  information  is,  quite  frankly,  hidden 
and  hoarded  rather  than  visible  and 
shared.  Dealing  with  the  unanticipated 
demands  the  latter.  As  the  people, 
processes,  and  technology  of  the  net-cen¬ 
tric  Global  Information  Grid  (GIG) 
mature,  the  goal  of  sharing  information 
must  serve  as  the  guiding  vision.  The  chal¬ 
lenge  is  to  design,  engineer,  and  create  an 
information  environment  rather  than 
focus  on  platforms  and  systems  alone. 

The  approach,  therefore,  is  to  success¬ 
fully  introduce  and  continually  evolve  the 
GIG  through  enterprise-wide  system 
engineering  —  not  tailored  stovepipes.  This 
effort  sets  the  path  that  the  rest  of  the 
enterprise  can  easily  follow  by  establishing 
enterprise-wide  technical  baselines,  analy¬ 
sis  capabilities,  and  compliance  manage¬ 
ment.  In  short,  emphasis  must  be  placed 
on  the  whole  enterprise  and  the  founda¬ 
tion  upon  which  it  will  support  the  full 
range  of  future  users. 

We  must  develop  the  net-centric  GIG 
as  an  enterprise,  not  stovepipes. 
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Services,  Not  Systems 

Today’s  world  is  focused  on  systems.  That 
is,  programs  that  retrieve  and  manipulate 
data  are  typically  developed  according  to 
very  specific  and  highly  tailored  require¬ 
ments.  Each  organization  or  function 
tends  to  pursue  its  own  needs.  The  result 
has  been  a  bevy  of  systems  that  not  only 
cannot  communicate  with  each  other  but 
do  not  even  use  the  same  language.  The 
proprietary  applications  currently  in  use 
are  not  open,  not  easily  changed,  and  not 
transferable  to  other  needs. 

Services-Oriented  Architecture  (SOA) 
is  the  key  to  transformation  in  an  age  of 
shared  information  needs.  Specifically, 
SOA  supports  an  information  environ¬ 
ment  built  upon  loosely  coupled,  reusable, 
standards-based  services.  It  promotes  data 
interoperability  rather  than  application 
interoperability.  SOA  ensures  providers 
can  reuse  what  already  exists  —  that  is, 
pieces  of  applications  and  data  rather  than 
re-create  them  every  time.  Moreover,  it 
allows  new  capabilities  to  be  delivered 
more  quickly.  The  practice  of  buying  indi¬ 
vidual,  highly  tailored,  proprietary  systems 
must  end.  We  must  place  a  new  focus  on 
separating  data  from  applications  for  use 
within  and  across  the  Enterprise 
Information  Environment  (EIE). 

The  second  key  to  success  is  leverag¬ 
ing  commercially  managed  services.  The 
EIE  will  provide  commonly  available  core 
services  -  that  is,  services  commonly 
needed  by  a  wide  range  of  users.  Services 
are  required  to  access,  manipulate,  share, 
and,  most  importantly,  collaborate  data. 
They  must  be  viewed  as  resources  to  man¬ 
age  rather  than  applications  to  own. 
Unnecessary  duplication  of  services  read¬ 
ily  available  in  the  marketplace  must  end. 
Buying  things  must  be  replaced  with  ser¬ 
vices  purchased  and  billed  based  on  usage. 
Simply  put,  the  DoD  will  not  develop, 
own,  run,  or  install  every  service  it  might 
need.  The  Net-Centric  Enterprise 
Services  program  under  way  at  Defense 
Information  Systems  Agency  (DISA)  is 
key  to  how  we  are  changing. 

We  must  concentrate  on  services,  not 
systems. 

Portfolios,  Not  Programs 

Finally,  there  is  a  fundamental  change  in 
the  management  and  oversight  of  the 
many  efforts  involved  in  this  transforma¬ 
tion.  It  is  a  change  that  is  understood  con¬ 
ceptually  and  its  importance  is  under¬ 
stood,  but  the  actual  implementation  is 
still  being  sorted  out.  The  2006  QDR  took 
steps  to  move  us  from  threat-based  acqui¬ 
sitions  to  a  capability-based  environment. 


In  a  world  of  unknown  challenges  and 
unanticipated  needs  and  partners,  focus¬ 
ing  on  capabilities  is  essential.  The  theory 
is  on  target,  but  the  execution  is  tricky. 

Traditionally,  the  acquisition  environ¬ 
ment  has  been  viewed  as  a  collection  of 
programs  and  systems  —  that  is,  individual 
activities  that  lead  to  a  specific  product. 
Over  time,  the  concept  of  systems  of  sys¬ 
tems  developed.  Regardless  of  terminolo¬ 
gy,  the  emphasis  was  still  oriented  on 
delivering  physical  platforms  or  lines  of 
code.  There  has  been  a  tendency  to  create 
tidy  packages  that  could  more  easily  be 
managed  —  despite  the  fact  that  the  rela¬ 
tionship  of  the  many  packages  to  the 
warfighter’s  needs  remained  fundamental¬ 
ly  unclear. 

Net-centric  operations  will  require 
bringing  individual  programs  under 
umbrellas  that  represent  actual  and  com¬ 
plete  capabilities.  The  QDR  initiated  four 
Capability  Portfolio  Management  (CPM) 
test  cases.  The  CPMs  not  only  pull  related, 
integrated,  and  synergistic  programs 
under  a  common  management  frame,  but 
also  consider  whether  or  not  there  are 
duplications  to  mediate  or  legacy  pro¬ 
grams  to  cut.  The  process  offers  the  abili¬ 
ty  to  look  at  the  whole  rather  than  strug¬ 
gle  to  determine  if  there  should  be  a  con¬ 
nection  between  the  parts. 

In  September  of  2006,  the  Deputy 
Secretary  of  Defense  (DepSecDeQ  signed 
a  memo  articulating  the  ultimate  objective 
of  the  CPM  test  cases:  ensuring  the  ability  to 
deliver  a  capability  portfolio  aligned  with  strategic 
intent.  In  addition  to  that  overall  guidance 
on  CPM,  the  leadership  now  regularly 
reviews  progress  through  the 
DepSecDef’s  Advisory  Working  Group. 
The  National  Information  Infrastructure/ 
Chief  Information  Officer  (CIO)  shares 
primary  responsibility  for  the  Joint  Net- 
Centric  Operations,  and  the  Joint 
Command  and  Control  test  cases. 
Preliminary  results  from  both  have  led  to 
issue  papers  that  are  currently  being 
reviewed  by  Program  Analysis  and 
Evaluation.  The  final  two  test  cases,  which 
the  DoD  also  supports,  are  Joint 
Battlespace  Awareness  and  Joint  Logistics. 
These  CPM  test  cases  are  consistent  with 
the  DoD  policy  on  IT  portfolio  manage¬ 
ment.  By  focusing  on  capabilities  needed, 
rather  than  programs  funded,  the  needs  of 
the  warfighter  are  better  met. 

We  must  manage  by  portfolios,  not 
programs. 

Challenges  Ahead 

Much  of  what  must  be  done  is  well  under¬ 
stood,  but  many  areas  and  needs  have  yet 
to  be  invented.  Many  challenges  lie  ahead. 


Establishing  an  information  sharing 
culture  is  critical;  making  it  happen  is 
equally  critical.  Cross-domain  solutions 
are  one  of  those  challenges.  Specifically, 
the  movement  of  information  across 
domains,  both  vertical  and  horizontal, 
must  be  addressed.  Whether  crossing 
organizational  boundaries  and  moving 
information  horizontally  or  maneuvering 
security  levels  and  moving  information 
vertically,  the  ability  to  leverage  informa¬ 
tion  throughout  the  national  security  com¬ 
munity  is  essential. 

Information  Assurance  (lA),  another 
key  area  of  focus  in  the  QDR,  is  the  basis 
for  timely  and  trusted  information.  The 
threat  is  real.  It  is  here,  it  is  now,  it  is  per¬ 
sistent,  and  it  is  maturing.  Most  important¬ 
ly,  we  must  change  our  approach.  Security 
approaches  must  move  from  fences  and 
patches  that  keep  intruders  out  and 
toward  data  that  is  secure  throughout  its 
useful  lifetime  —  secure  from  the  start.  lA 
is  one  of  the  most  complex  and  important 
aspects  of  information  sharing. 

The  lA  Component  of  the  GIG  Integrated 
Architecture  [4],  originally  released  in  late 
2004,  provides  the  strategy  and  the  way 
ahead.  It  focuses  on  five  goals  covering  pro¬ 
tection  and  defense  and  creating  the  right 
workforce.  It  also  includes  a  robust  and 
growing  identity  management  effort, 
including  the  issuance  of  more  than  10  mil¬ 
lion  common  access  cards  (CAC)  and  a 
requirement  from  the  Joint  Task  Force- 
Global  Network  Operations  for  CAC  log-in 
with  Public  Key  Infrastructure  certificates. 

There  is  yet  another  critical  challenge  - 
creating  a  Net-Enabled  Command  Capa¬ 
bility  (NECC).  In  addition  to  moving  away 
from  the  current  Global  Command  and 
Control  System  family  of  systems,  this 
effort  will  also  require  a  significant  change 
in  both  mindset  and  approach.  It  will 
require  moving  from  a  static  system  and 
program-based  acquisition  environment  to 
one  that  is  dynamic  and  capabilities  based. 
Also,  it  will  change  the  current  approach  of 
pushing  information  to  users,  and  instead 
will  enable  users  to  pull  what  they  need  and 
to  contribute  what  they  know.  Instead  of 
multiple  architectures,  it  will  be  based  on  a 
single  architecture.  Perhaps  most  impor¬ 
tantly,  there  will  be  a  move  from  being  plat¬ 
form  specific  and  system  driven,  to  plat¬ 
form  independent  and  capable  of  dynami¬ 
cally  meeting  user  needs. 

As  with  many  other  aspects  of  the 
transformation,  there  are  plenty  of  chal¬ 
lenges  for  NECC  in  the  months  and  years 
ahead.  However,  a  program  executive 
office  has  been  established  at  DISA  and 
an  early  2006  Acquisition  Decision 
Memorandum  Exit  Criteria  was  estab- 
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Coming  Events 


August  2-4 

13'^  ISSAT  (International  Society  of 
Science  and  Applied  Technologies) 
International  Conference  on 
Reliability  and  Quality  in  Design 
Seattle,  WA 

www.issatconferences.org/ 

ROD2007page.htnri 

August  12-15 

26^  Annual  ACM  SIGACTSIGOPS 
Symposium  on  Principles  of  Distributed 
Computing  (PODC  2007) 
Portland,  OR 

www.podc.org/podc2007 

August  12-16 

IWCMC  (International  Wireless 
Communications  and  Mobile 
Computing  Conference)  2007 
Honolulu,  HI 

http://dropzone.tanriu.edu/-xizhang/ 

IWCMC07/IWCMC07.htm 


August  13-17 

AGILE  2007  Conference 
Washington,  D.C. 
www.agile2007.org 

August  28-30 

PerMIS  ’07 
Performance  Metrics  for 
Intelligent  Systems 
Washington,  D.C. 
www.isd.nnel.nist.gov/ 
PerMIS_2007/index.htm 

2008 

Softvtare 
Technology  Conference 

Systems  and  Software  Technology 
Conference 

www.sstc-online.org 


Coming  Events:  Please  submit  coming  events  that 
are  of  interest  to  our  readers  at  least  90  days 
before  registration.  E-mail  announcements  to: 
nicole.kentta@hill.af.mil. 


lished.  Progress  is  indeed  being  made. 

There  are  many  other  challenges  that 
lie  ahead.  Most  will  require  the  innovative 
thinking  that  is  best  reflected  by  a  sense  of 
partnership  with  industry,  academia,  and 
technical  associations.  Success  will  be 
based  on  the  ability  to  establish  teams  that 
are  excited  by  the  challenge,  are  ready  to 
pursue  new  ideas,  and  can  make  things 
happen. 

Summary 

Information  is  a  strategic  asset.  It  is  every 
bit  as  important  as  ships  sailed,  planes 
flown,  and  troops  commanded,  and,  as  an 
institution  and  a  country,  we  must  treat  it 
as  such. 

Becoming  net-centric  is  not  about 
replacing  the  warfighter  with  technology 
We  will,  for  example,  still  need  boots  on 
the  ground.  Net-centric  operations  will 
allow  humans  to  leverage  information  to 
better  deal  with  unanticipated  challenges, 
needs,  partners,  and  circumstances. 

Becoming  net-centric  means  ensuring 
information  is  accessible  throughout  the 
enterprise  from  high-level  headquarters  and 
command  centers  to  a  soldier  in  a  city  track¬ 
ing  insurgents  to  a  civilian  at  a  depot  in 
search  of  a  new  supplier.  It  centers  on  the 
knowledge  that  timely  and  trusted  informa¬ 
tion  can  be  shared  with  those  who  need  it, 
whether  alone  or  as  a  collaboration  in 
groups. 

Most  importantly,  becoming  net-cen¬ 
tric  will  allow  the  community  to  truly 
move  to  an  information  environment  in 
which  all  participants,  known  and  unantic¬ 
ipated,  have  confidence  that  they  can  get 
the  information  they  need  and  they  trust. 

In  the  end,  it  comes  down  to  a  simple 
objective,  one  that  is  dear  to  our  nation  — 
saving  lives.  As  we  move  into  the  future 
and  deliver  these  capabilities  to  users 
across  the  enterprise,  we  must  move  as  a 
team  -  a  team  that  has  a  lot  of  challeng¬ 
ing,  yet  very  rewarding,  work  ahead.  And 
I,  for  one,  am  looking  forward  to  the  jour¬ 
ney.  ♦ 
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Sharing  Information  Today:  Net-Centric  Operations  in 
Stability,  Reconstruction,  and  Disaster  Response 

Dr.  Linton  Wells  II 

Principal  Deputy  Assistant  Secretary  of  Defense  (Networks  and  Information  Integration) 

As  the  Department  of  Defense  (DoD)  continues  its  information  age  transformation  to  net-centric  operations,  we  must  con¬ 
sider  the  full  array  of  the  DoD  ^  activities.  The  level  of  interaction  with  partners  outside  the  boundaries  of  DoD  networks 
has  increased  tremendously  over  the  past  few  years.  In  particular,  it  is  crucial  to  support  Stability,  Security,  Transition  and 
Reconstruction  (SSTR)  operations.  Humanitarian  Assistance  and  Disaster  Relief  (HADR),  and  Building  Partnership 
Capacity  (BPC)  among  potential  coalition  members.  The  social,  political,  and  economic  goals  for  which  United  States  and 
coalition  forces  are  committed  can  only  be  achieved  through  effective  interaction  with  these  non-traditional partners  in  largely 
unclassified  environments. 


Net-centric  operations  are  key  ele¬ 
ments  of  the  DoD’s  information 
age  transformation.  Much  has  been  writ¬ 
ten  about  net-centric  approaches  in 
major  combat  operations.  However,  the 
DoD  also  must  be  able  to  support  SSTR 
operations,  HADR,  and  BPC  among 
potential  coalition  members.  Net-centric 
principles  must  extend  to  these  environ¬ 
ments  as  well. 

Thus,  it  is  necessary  to  communicate, 
collaborate,  engage,  and  —  in  some  cases 
—  translate  with  civil-military  partners 
outside  the  boundaries  of  DoD  net¬ 
works  in  what  often  are  called  complex 
operations.  These  capabilities  are  not  nice- 
to-have  adjuncts  to  other  military 
requirements.  In  fact,  the  social,  politi¬ 
cal,  and  economical  goals  for  which 
United  States  and  coalition  forces  are 
committed  cannot  be  achieved  without 
the  ability  to  interact  effectively  with 
these  non-traditional  partners  in  largely 
unclassified  environments.  Such  collabo¬ 
rative  efforts  need  to  work  with  austere 
communications  that  function  where 
power  is  unreliable.  These  capabilities 
are  urgently  needed  now  in  Iraq  and 
Afghanistan,  and  they  will  be  needed 
elsewhere  in  the  future. 

As  has  often  been  said,  there  is  no 
interoperability  without  operability.  Real- 
world  experiences  —  from  the  Balkans  to 
Iraq  and  from  the  tsunami  relief  to 
Katrina  —  have  shown  that  operations 
repeatedly  have  been  impeded  by  a  lack 
of  communications,  lift,  and  power. 

Communications 

Networks  provide  a  means  to  share  infor¬ 
mation,  develop  shared  situational  aware¬ 
ness,  and  self- synchronize  actions  in 
accordance  with  command  intent  to 
accomplish  its  mission  more  effectively. 
But  the  sensors  to  gather  data,  and  the 
ability  to  share  information,  are  not 
techie-geek  adjuncts  to  major  muscle 
movements  such  as  the  delivery  of  food. 


water,  and  shelter.  They  are  critical  enablers 
of  everything  else  that  happens.  Such  capabil¬ 
ities  often  are  called  hastily  formed  networks 
and  they  are  essential  to  restoring  basic 
voice  and  data  services,  both  in  disaster 
and  stability  environments.  The  network 
environment  during  the  initial  phases  of 
a  disaster  response  often  is  chaotic. 
Organizations  may  arrive  with  their  own 
networks  and  promptly  activate  systems 
without  coordinating  with  other  partici- 

^Trust  is  essential 
for  relationships  to 
be  established,  on 
or  offline,  and  for 
actions  to  be  taken 
in  stressed 
environments.^^ 


pants.  Radio  frequency  management  is 
seldom  done  well.  As  a  result.  Infor¬ 
mation  and  Communications  Technolo¬ 
gy  (ICT)  leaders  in  disaster  areas  must 
coordinate  actions  prior  to  activating 
their  networks  to  minimize  these  types 
of  problems.  More  generally,  technical 
solutions  must  provide  the  flexibility  to 
add  unanticipated  users,  connect  with 
non-traditional  partners,  scale  to  meet 
demands  for  bandwidth,  and  support  the 
users  with  intermittent  connectivity  who 
always  are  involved  in  emergencies. 

Lift 

Networks  and  their  supporting  equip¬ 
ment  almost  always  will  have  to  be 
moved  into  crisis  locations,  either  to  aug¬ 
ment  damaged  systems  or  add  new  capa¬ 
bilities.  But,  too  often,  they  are  not  given 
adequate  priority  in  lift  manifests  to  get 


there  soon  enough  to  enable  the  other 
actions  that  depend  on  them.  Such  capa¬ 
bilities  need  to  be  put  on  the  first  few  lifts 
during  an  operation  and  not  be  relegated 
to  follow-on  echelons. 

Power 

Stable,  reliable  electrical  power  is  essen¬ 
tial  for  effective  information  sharing,  but 
almost  never  was  available  in  HADR 
environments  and  rarely  in  SSTR.  In  such 
situations,  power  solutions  ideally  would 
not  depend  on  gasoline  or  diesel  fuel, 
which  complicate  the  already  significant 
logistic  problems  in  austere  environ¬ 
ments.  Several  efforts  are  beginning  to 
produce  rapidly  deployable,  sustainable 
power  systems  that  can  use  multiple  ener¬ 
gy  sources  (wind,  solar,  biofuel,  etc.),  and 
these  should  be  incorporated  into  exer¬ 
cises  and  contingency  plans. 

Social  Networking 

Technology  is  an  important  component 
of  information  sharing,  but  by  no  means 
the  only  one.  Social  networking  is  a  key 
enabling  function  in  fostering  effective 
responses  to  complex  emergencies.  Trust 
is  essential  for  relationships  to  be  estab¬ 
lished,  on  or  offline,  and  for  actions  to  be 
taken  in  stressed  environments.  Such 
trust  is  not  built  overnight.  It  needs  to  be 
built  on  shared  experiences  and  rein¬ 
forced  with  credible  identification  man¬ 
agement.  The  establishment  of  relation¬ 
ships  with  anticipated  partners,  well 
before  a  contingency,  is  critical  to  the 
success  of  future  operations. 

Data  Strategy 

A  core  tenet  of  net-centric  operations  is 
the  underlying  data  strategy.  This  calls  for 
data  to  be  visible,  accessible,  and  under¬ 
standable,  even  for  unanticipated  users. 
The  approach  decouples  data  and  appli¬ 
cations,  enabling  much  more  flexible 
responses,  but  it  also  requires  that  data 
from  diverse  sources  be  tagged  appropri- 
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ately.  This  can  be  a  particular  challenge 
when  dealing  with  a  wide  range  of  part¬ 
ners.  Moreover,  merely  creating  infor¬ 
mation  is  not  enough.  This  goal  is  to 
support  improved  decision-making  and 
to  turn  decisions  into  actions  as  quickly 
as  possible.  This  often  involves  innova¬ 
tion  in  the  field. 

Entrepreneurial  Adaptation 

The  pace  of  technological  change  is 
breathtaking,  and  government  systems, 
however  well  resourced,  typically  devel- 
opmentally  lag  in  the  private  sector. 
Moreover,  planned  linkages  and  interac¬ 
tions  will  almost  certainly  be  overtaken 
by  events  in  crises.  Therefore,  a  critical 
component  of  an  effective  response  is 
to  be  able  to  adapt  existing  capabilities 
in  cooperative,  entrepreneurial  ways  on 
the  fly. 

By  taking  these  lessons  into  account, 
the  DoD  is  working  on  five  parallel 
fronts  to  extend  net-centric  operations 
to  SSTR,  HADR,  and  BPC  environ¬ 
ments: 

1 .  Developing  capabilities  to  gather  situ¬ 
ational  awareness  and  to  share  it  by 
communicating,  collaborating,  trans¬ 
lating,  and  engaging  beyond  the 
boundaries  of  the  .mil  domain  with 
non-traditional,  civil- military  part¬ 
ners  in  a  wide  variety  of  situations. 

2.  Cultivating  diverse  social  networks  and 
having  them  ready  both  to  deploy 
quickly  and  to  be  received  as  trusted 
partners  by  anticipated  and  unantici¬ 


pated  partners  on  the  scene.  The 
DoD  and  its  civil-military  partners 
need  to  be  able  to  assemble  and 
share  lists  of  available  practitioners 
and  their  skill  sets  in  trusted  elec¬ 
tronic  environments. 

3.  Incorporating  best  practices  to  change 
concepts  of  operations;  doctrine;  and  tac¬ 
tics,  techniques,  and  procedures^  so  that 
appropriate  action  can  be  taken  by 
forces  on  the  scene  without  having 
to  constantly  refer  issues  back  to 
higher  authority. 

4.  Implementing  modest  legal  changes  that 
allow  ICT  to  be  used  more  broadly 
in  reconstruction  and  repair  and 
allow  for  capabilities  to  be  left 
behind  after  the  end  of  an  opera¬ 
tion. 

5.  Providing  some  funding  (not  much,  but 
quickly  available)  to  deploy  these 
capabilities  with  trained  personnel 
early  enough  to  let  them  act  as  the 
critical  enablers  of  other  activities. 
These  approaches  can  transform  our 

information  sharing  capabilities  and 
greatly  improve  the  DoD’s  capabilities 
in  the  critical  areas  of  SSTR,  HADR, 
and  BPC.  Establishing  resilient  net¬ 
works  and  power  grids  in  affected  areas 
must  be  planned  for  and  executed  early 
to  enable  information  sharing,  enhance 
the  resiliency  of  the  local  populace,  and 
accelerate  an  effective  response.^ 
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Getting  to  GIG:  Enterprise- Wide  Systems  Engineering 

Defense  Information  Systems  Agency 

The  Defense  Information  Systems  Agency  (DISA)  has  recently  taken  on  a  new  initiative  to  perform  Enterprise-Wide 
Systems  Engineering  (EWSE),  expanding  upon  the  work  currently  pe  formed  by  the  Assistant  Secretary  of  Defense  for 
Networks^  Information,  and  Integration  (AS D [Nil])  staff  DISA  is  leveraging  their  vast  technical  resources  to  peform  end- 
to-end  systems  engineering  across  the  Global  Information  Grid  (GIG)  to  jump  start  this  effort. 


The  goals  of  EWSE  include  providing 
continuous  oversight  of  the  GIG’s  evo¬ 
lution,  maintaining  a  GIG  enterprise-wide 
technical  baseline,  establishing  enterprise¬ 
wide  analysis  capabilities,  establishing  a  GIG 
compliance  management  program,  and 
overseeing  enterprise-wide  experiments. 

DISAs  GIG  engineering  directorate  is 
leading  this  effort  and  recently  stood  up  the 
new  EWSE  Management  Office  to  coordi¬ 
nate  activities  across  DISA  sub-units  and  to 
provide  interfaces  to  ASD  (Nil)  and  other 
organizations  outside  DISA,  including  the 
National  Security  Agency  (NS A),  Naval 
Research  Laboratory,  Coordinating 
Committee  for  Multilateral  Export  Controls, 
Services,  and  other  Department  of  Defense 
(DoD)  agencies.  The  EWSE  office  will  also 
prioritize  workload  and  develop  annual  work 
plans.  A  major  focus  of  the  effort  will  be  to 
resolve  GIG  EWSE  issues  for  end-to-end 
interoperability  including  incrementally 
developing  a  common  set  of  requirements 
for  capabilities  that  span  the  GIG,  establish¬ 
ing  a  GIG  end-to-end  reference  architecture, 
developing  technical  guidance  to  facilitate 
end-to-end  interoperability  and  perfor¬ 
mance,  and  developing  a  minimum  set  of 
interoperability  and  performance  require¬ 
ments  (i.e.  Net-Centric  Interface  Documents 
[NCIDs])  for  GIG  programs  and  systems. 

Specific  technical  issues  to  be  resolved  by 
the  new  EWSE  team  include: 

Black  Internet  Protocol  (IP)  Core 
Architecture.  The  EWSE  team  will  develop 
a  flexible  and  affordable  black  IP  core  archi¬ 
tecture  that  provides  external  encryption  to 
the  tactical  edge  of  the  GIG.  This  architec¬ 
ture  extends  the  black  core  to  bases,  posts, 
camps,  and  stations  and  to  service  delivery 
points  for  tactical  (mobile,  deployable,  trans¬ 
portable)  networks  and  will  provide  critical 
insight  in  supporting  the  fiscal  year  (EY) 
2010  program  office  memorandum  build. 
This  effort  will  define  a  solution  for  GIG 
gateways,  service  delivery  points  and  defense 
integration  systems  network  interfaces. 

Voice-over  IP  (VoIP).  The  EWSE  team 
will  define  a  GIG  end-to-end  VoIP  architec¬ 
ture.  It  win  develop  associated  VoIP  require¬ 
ments,  standards,  interface  specifications, 
and  performance  criteria  for  all  DoD  enter¬ 


prise  component  systems.  This  initiative  will 
provide  a  standards-based  documented 
architecture  and  guidance  that  will  enable 
multi-vendor  implementations. 

Operationalizing  GIG  Quality  of 
Service  (QoS).  The  EWSE  team’s  objective 
is  to  demonstrate  the  feasibility  of  a  pro¬ 
posed  QoS  approach.  It  will  define  a  QoS 
service  class  definition  for  DoD  needs  and 
define  service  level  objectives  and  perfor¬ 
mance  metrics  for  QoS  service  classes.  It  will 
leverage  modeling  and  simulation  efforts  to 
validate  QoS  performance  requirements  and 
architecture  decisions. 

GIG  Services.  The  EWSE  team  will 
develop  an  interoperable  architecture  for 
GIG  services  and  address  core  enterprise 
services  issues  for  study  as  a  result  of 
Program  Decision  Memorandum  III  (PDM 
III).  The  EWSE  team  will  provide  a  liaison 
and  coordinate  with  the  various  core  enter¬ 
prise  services  working  groups  chartered 
under  PDM  III.  They  will  identify  key  issues 
to  be  addressed,  document  results  of  the 
studies  in  NCIDs,  and  ensure  that  proposed 
solutions  trace  to  and  are  consistent  with  the 
rest  of  the  GIG  technical  guidance. 

Information  Assurance  (lA).  Working 
with  NSA,  this  effort  builds  on  the  current 
GIG  lA  Architecture.  This  work  will  expand 
in  EY  2007  to  focus  on  lA  enterprise  system 
engineering  and  the  development  of  an  lA 
implementation  plan  and  guidance.  The  task 
will  also  develop  an  acceptable  High 
Assurance  IP  Encryptor  discovery  solution 
and  develop  implementation  guidance  for 
cross-domain  solutions  to  manage  and  con¬ 
trol  information. 

Tactical  Edge  Issues.  The  EWSE 
team’s  goal  is  to  address  tactical  edge  issues 
articulated  by  the  joint  net-centric  operations 
portfolio  manager  focusing  on  tactical 
ground  and  tactical  ground-to-air  scenarios. 
This  effort  will  involve  developing  solutions 
for  issues  such  as  address  allocation,  mobile 
domain  routing,  tactical  QoS  for  voice  and 
data,  and  tactical  network  management. 

The  EWSE  effort  also  involves  main¬ 
taining  and  ensuring  compliance  with  the 
GIG  Technical  Baseline  by  working  with 
programs  to  define  requirements.  This  close 
working  relationship  with  program  offices 


throughout  the  DoD  was  established 
through  DISA’s  role  as  the  DoD  Executive 
Agent  for  Information  Technology  (IT) 
Standards.  Within  this  context,  the  Enter¬ 
prise  Documentation  Framework  working 
group  was  set  up  to  streamline  technical 
baseline  documentation  and  perform  config¬ 
uration  management.  The  DoD  IT  Stan¬ 
dards  Registry  (DISR)  is  evolving  to  fit  the 
new  tech  baseline.  Program  office  technical 
staffs  will  be  able  to  access  the  latest  stan¬ 
dards  and  GIG  technical  guidance  published 
to  the  DISR  with  just  a  few  mouse  clicks. 

Applying  an  EWSE  approach  to  next- 
generation  GIG  capabilities  will  improve 
DoD  acquisition  decisions  based  on  solid 
technical  advice.  The  effort  will  instantiate 
department-wide,  detailed,  technical  analysis 
by  defining  fundamental  GIG  interoperabil¬ 
ity  and  performance  requirements  for  both 
warfighting  and  business  capabilities.  The 
analysis  is  targeted  at  addressing  risk  and 
synchronization  across  programs,  and  the 
improved  decision  process  will  enable  the 
deployment  of  new  or  improved  capabilities 
quicker  or  at  lower  cost.  GIG  EWSE  is  crit¬ 
ical  to  ensure  acquisition  and  interoperation 
of  GIG  components  that  will  result  in  end- 
to-end  capabilities  enabling  warfighters  to 
better  conduct  agile  net-centric  operations.^ 

About  DISA 

This  article  was  the  collaborative  effort 
of  several  individuals  from  DISA.  DISA 
is  a  DoD  combat  support  agency  under 
the  direction  of  ASD  (Nil).  It  is  respon¬ 
sible  for  planning,  engineering,  acquir¬ 
ing,  fielding  and  supporting  global  net- 
centric  solutions  and  operating  the 
Defense  Information  System  Network 
to  serve  the  needs  of  the  President,  Vice 
President,  Secretary  of  Defense,  Joint 
Chiefs  of  Staff,  Combatant  Comman¬ 
ders,  and  other  DoD  components  under 
all  conditions  of  peace  and  war.  More 
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be  found  at  <www.disa.mil/index. 
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Providing  the  Tools  for  Information  Sharing: 
Net-Centric  Enterprise  Services 


Ann  H.  Kim  and  Carol  Macha 
Department  of  Defense  Chief  Information  Officer  Information  Policy  Directorate 

The  Department  of  Defense  (DoD)  is  establishing  a  net-centric  environment  that  increasingly  leverages  shared  services  and 
Service  Oriented  A.rchitecture  (SO A.)  that,  among  other  things,  is  supported  by  the  required  use  of  a  common  and  shared 
infrastructure.  A  common  infrastructure  enables  force  capabilities  to  be  readily  networked  in  support  of  joint  warfighting  and 
operations.  The  Net-Centric  Enterprise  Services  (NCES)  program  is  a  transformational  program  that  delivers  a  set  of 
shared  services  as  part  of  the  DoD 's  common  infrastructure  to  enable  networked joint  force  capabilities,  improved  interoper¬ 
ability,  and  increased  information  sharing  across  mission  area  services. 


As  the  DoD  continues  to  face  new  and 
evolving  threats,  it  must  be  poised  to 
quickly  respond  to  those  threats  with  an 
increased  level  of  agility.  The  DoD  recog¬ 
nizes  that  this  level  of  agility  requires  a 
fundamental  change  in  the  way  informa¬ 
tion  technology  is  provided  and  managed 
by  the  DoD  With  the  publication  of  the 
Net-Centric  Services  Strategy  [1]  the  DoD 
has  established  a  vision  for  achieving  this 
agiHty  through  the  use  of  shared  services 
and  SOAs. 

The  DoD  Net-Centric  Services 
Strategy  outlines  an  approach  in  which  the 
DoD’s  wide  range  of  information  and 
functional  capabilities  —  provided  by  our 
many  systems  -  are  made  available  through 
software-based  services  on  enterprise  net¬ 
works.  These  software-based  services 
deliver  reusable  business  functionality  as 
standardized  building  blocks  that  can  be 
quickly  adapted  into  capabilities  that  meet 
rapidly  changing  mission  needs. 

To  achieve  this  vision  of  a  services- 
based  environment,  the  DoD  must  estab¬ 
lish  a  common  infrastructure  that  will 
enable  networked  joint  force  capabilities, 
improved  interoperability,  and  increased 
information  sharing  across  mission  area 
services.  The  objective  of  the  NCES  pro¬ 
gram  is  to  deliver  a  set  of  shared  services 
as  part  of  this  common  infrastructure. 

The  NCES  is  a  Defense  Information 
Services  Agency  acquisition  program  to 
adopt,  buy,  or  create  essential  information 
sharing  services  needed  by  the  DoD.  As 
part  of  the  common  infrastructure,  it  will 
enable  seamless  information  sharing  by 
providing  enterprise-wide  services  for 
characterizing,  cataloging,  locating,  and 
accessing  information  on  the  Global 
Information  Grid  (GIG).  NCES  is  the 
only  program  specifically  tasked  with  pro¬ 
viding  enterprise-wide  information  sharing 
capabilities  to  enable  information  superi¬ 
ority,  accelerated  decision-making,  and 
effective  operations. 


This  groundbreaking  program  faces 
the  following  significant  challenges: 

Establishing  Trust.  As  a  provider  of 
shared  enterprise  services,  NCES  has  a 
vested  interest  in  facilitating  the  cultural 
shift  within  the  DoD  to  establish  trust  in 
the  availability  of  services  provided  out¬ 
side  of  one’s  own  organization.  A  secure, 
agile,  and  interoperable  services-based 
environment  in  which  information  is 
much  more  readily  visible  and  accessible  to 
the  DoD,  as  well  as  other  authorized  fed¬ 
eral,  state,  local,  and  coalition  partners 
requires  the  establishment  of  trust  on  mul¬ 
tiple  levels.  The  success  of  NCES  depends 
on  the  establishment  of  mechanisms  to 
enable  trust  in  the  capabilities  (availability), 
trust  in  the  information  (assurance),  and 
trust  in  the  participants  (identity). 

NCES’  services  must  be  made  available 
across  the  DoD.  Its  user  community  spans 
strategic,  operational,  and  tactical  net¬ 
works.  To  facilitate  trust  in  NCES’  ser¬ 
vices,  the  NCES  program  must  be  able  to 
define  service  level  agreements  (SLAs)  that 
describe  the  reliability  and  performance  of 
its  services  for  its  many  users  across  the 
different  networks.  It  needs  to  publish 
those  SLAs  and  instrument  its  services 
such  that  they  can  be  monitored  against 
the  SLAs.  As  a  result  of  two  recent  DoD 
Chief  Information  Officer  (CIO)  reports 
[2,  3],  the  NCES  program  is  actively  work¬ 
ing  with  the  Joint  Task  Force-Global 
Network  Operations  (JTF-GNO)  to  iden¬ 
tify  needed  capabilities  for  operating  and 
monitoring  information  sharing  capabili¬ 
ties  offered  as  services  on  the  GIG. 

To  establish  trust  in  NCES  as  a  service 
provider,  the  program  has  established  the 
Early  Capabilities  Baseline  through  which 
users  and  organizations  have  an  early 
opportunity  to  use  NCES’  services  and 
provide  feedback  to  the  program.  This 
early  interaction  allows  NCES  to  develop 
relationships  with  its  user  community,  to 
demonstrate  utility  across  their  environ¬ 


ments,  and  to  continuously  involve  its 
stakeholders  in  the  refinement  of  its  enter¬ 
prise  services. 

Scaling  to  the  DoD  Enterprise. 

NCES’  services  are  currently  being  devel¬ 
oped  to  support  an  estimated  number  of 
users.  However,  as  the  DoD’s  implementa¬ 
tion  of  services  and  SOAs  mature,  the 
value  of  information  reuse  and  readily 
found  capabilities  will  be  recognized.  The 
program  must  plan  for  its  services  being 
leveraged  in  the  development  of  informa¬ 
tion  sharing  capabilities  by  unanticipated 
but  authorized  users  across  the  DoD  and 
its  mission  partners.  Any  initial  load  bal¬ 
ancing  and  scalability  thresholds  could 
very  quickly  be  exceeded. 

Through  NCES’  collaboration  with  the 
JTF-GNO  to  identify  capabilities  for  oper¬ 
ating  and  monitoring  shared  enterprise 
services,  the  program  is  proactively  devel¬ 
oping  long-term  solutions  to  this  chal¬ 
lenge.  The  technical  solution  must  be  aug¬ 
mented  by  an  appropriate  resourcing 
model  that  enables  the  program  to  contin¬ 
ue  providing  services  according  to  pub¬ 
lished  SLAs  and  accommodate  growth  in 
demand. 

Governance.  Widespread  adoption  of 
NCES’  services  into  business/mission 
processes  requires  the  establishment  of 
governance  around  their  provisioning, 
security,  use,  and  operation.  NCES’  ser¬ 
vices  must  be  based  on  common  standards 
and  rules  to  ensure  interoperability  and 
consistent  implementation  throughout  the 
DoD.  The  DoD  must  establish  a  gover¬ 
nance  framework  that  ensures  that  the 
common  standards  and  rules  are  consis¬ 
tently  appHed  and  enforced. 

The  NCES  program,  in  collaboration 
with  the  DoD  community,  has  been  devel¬ 
oping  an  enterprise  services  governance 
framework  that  addresses  this  challenge. 
This  framework  should  provide  limited, 
lightweight  enterprise  governance  for 
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Making  It  Work -The  Net-Centric 
Global  Information  Grid  NetOps  Strategy 


Thomas  Lam 
Office  of  the  A^ssistant  Secretary  of  Defense 

The  Joint  Network  of  Operations  (NetOps)  Concept  of  Operations  is  assigning  overall  responsibility  for  NetOps  to 
Commander,  United  States  Strategic  Command  (CDTUS STRAY COM)  and  has  enabled  the  Department  of  Defense 
(DoD)  to  begin  improving  the  operations  and  defense  of  the  Global  Information  Grid  (GIG).  However,  there  is  still  only 
limited  progress  in  implementing  an  enterprise-wide  construct  that  fully  addresses  all  aspects  of  NetOps  in  a  dynamically 
changing  global  environment.  Observations  from  Operation  Iraqi  Freedom  (OIF)  continue  to  reinforce  that  the  DoD  has  only 
limited  abilities  to  provide  commanders  with  relevant  and  timely  GIG  situational  awareness  or  mission  impact  assessments 
and  that  lack  of  abilities  to  effectively  de-conflict,  coordinate,  and  control  spectrum  use  represents  a  very  real  and  operationally 
critical  problem  that  must  be  solved.  These  deficiencies  coupled  with  sometimes  confusing  or  even  conflicting  policies  and  guid¬ 
ance,  significantly  impact  the  ability  of  the  operators)  defenders  of  the  GIG  to  fully  support  ongoing  warfighting  and  peace¬ 
keeping  missions  in  an  increasingly joint  and  multi-partner  environment.  To  provide  a  way  ahead  and  to  foster  unity  of  effort 
across  the  DoD,  the  DoD  Ghief  Information  Officer  (GIO)  is  developing  the  Net-Gentric  GIG  NetOps  Strategy  to  describe 
a  net-centric  vision  and  mission  for  GIG  NetOps  along  with  the  necessary  high-level  goals  and  objectives. 


The  Joint  NetOps  Concept  of  Oper¬ 
ations  and  assignment  of  overall 
responsibility  for  NetOps  to  CDRUS- 
STRATCOM  has  enabled  the  DoD  to 
begin  improving  the  operations  and 
defense  of  the  GIG.  However,  there  is 
still  limited  progress  in  implementing  an 
enterprise-wide  construct  that  fully 
addresses  all  aspects  of  NetOps  in  a 
dynamically  changing  global  environ¬ 
ment.  Observations  from  OIF  continue 
to  reinforce  the  following: 

•  There  is  only  limited  ability  to  pro¬ 
vide  commanders  with  relevant  and 
timely  GIG  situational  awareness  or 
mission  impact  assessments. 

•  There  are  confusing  and  sometimes 
conflicting  NetOps  policies  and  guid¬ 
ance. 

•  There  is  limited  ability  to  de-conflict, 
coordinate,  and  control  spectrum  use. 
Across  the  DoD,  there  is  little,  if  any, 
coordination  or  synchronization  amongst 
the  many  independent  NetOps  acquisi¬ 
tion  and  fielding  activities  that  are  cur¬ 
rently  under  way.  Additionally,  there  is  a 
general  lack  of  metrics  and  processes  to 
measure  the  health  and  readiness  of  the 
GIG.  These  deficiencies  significantly 
impact  the  ability  of  the  operators/ 
defenders  of  the  GIG  to  fuUy  support 
ongoing  warfighting  and  peacekeeping 
missions  in  an  increasingly  joint  and 
multi-partner  environment. 

To  provide  a  way  ahead  and  to  foster 
unity  of  effort  across  the  department, 
the  DoD  CIO  is  developing  the  Net- 
Centric  GIG  NetOps  strategy  to 
describe  a  net-centric  vision  and  mission 
for  GIG  NetOps  along  with  the  neces¬ 
sary  high-level  goals  and  objectives. 


Highlights  of  the  strategy  are  introduced 
in  this  article. 

Vision  and  Mission  of 
Net-Centric  GIG  NetOps 

The  vision  for  Net-Centric  GIG  NetOps 
is  to  transform  existing  and  new  capabil¬ 
ities  into  a  force  multiplier  that  enables 
the  warfighting,  business,  intelligence 

*The  vision  of  the 
Net-Centric  GIG  NetOps 
is  to  transform  existing 
and  new  capabilities  into 
a  force  multiplier  that 
enables  the  warfighting, 
business,  intelligence  and 
enterprise  information 
environment  mission 
areas  to  fully  employ  the 
power  of  the  GIG.** 

and  enterprise  information  environment 
mission  areas  to  fully  employ  the  power 
of  the  GIG.  The  corresponding  mission 
is  to  enable  the  DoD  to  employ  the  GIG 
as  a  unified,  agile,  and  adaptive  enterprise 
that  does  the  following: 

1.  Facilitates  Net-Centric  Operations 
(NCO)  by  enabling  authorized  users 


and  mission  partners  to  access  and 
share  timely  and  trusted  information 
from  any  location  at  any  time. 

2.  Ensures  that  GIG  capabilities  can  be 
fully  employed  as  a  joint  weapon  sys¬ 
tem  that  meets  warfighter  mission 
needs  and  priorities. 

As  shown  in  Figure  1  (see  page  12), 
NetOps  forms  the  core  of  GIG  opera¬ 
tions  in  a  net-centric  framework  and  is  a 
critical  enabler  of  the  NCO.  NetOps 
(center)  ensures  that  the  key  components 
of  the  GIG  (transport  and  computing 
infrastructure,  data,  services,  and  infor¬ 
mation  assurance)  create  a  supportive 
environment  (inner  ring)  that  protects 
and  maintains  the  integrity  and  quality  of 
information  (middle  ring),  thereby  ensur¬ 
ing  that  users  can  easily  post,  access,  and 
share  relevant  information  and  collabo¬ 
rate  to  conduct  NCO  (outer  ring). 

Goals  of  Net-Centric  GIG 
NetOps 

The  Net-Centric  GIG  NetOps  goals  are 
focused  on  achieving  positive  opera¬ 
tional  mission  outcomes  and  reflect  an 
emerging  recognition  across  the  depart¬ 
ment  that  the  majority  of  the  challenges 
associated  with  transforming  NetOps 
into  a  net-centric  enabler  are  organiza¬ 
tional  or  cultural  in  nature. 

Goal  I :  Enable  authorized  users,  including 
mission  partners,  to  access  and  share 
information  and  collaborate  at  any  time, 
from  any  location. 

Fundamental  to  the  mission  of  Net- 
Centric  GIG  NetOps  is  to  enable  autho¬ 
rized  users  (including  mission  partners) 
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to  access  and  share  information  and  col¬ 
laborate  among  those  involved  from  any 
location  at  any  time  within  the  limitations 
imposed  by  technology,  deployed  GIG 
capabilities,  laws,  and  policies.  Achieving 
this  goal  will  require  that  NetOps  play  a 
dual  role  with  respect  to  the  Net-Centric 
Data  Strategy  NetOps  must  be  able  to 
manage  and  facilitate  the  visibility,  accessi¬ 
bility,  and  understandability  of  informa¬ 
tion,  along  with  the  ability  to  share  infor¬ 
mation  within  and  across  DoD  mission 
areas.  NetOps  data  must  also  be  made  vis¬ 
ible,  accessible,  and  understandable  to  all 
authorized  users  to  facilitate  end-to-end 
GIG  situational  awareness. 

Goal  2:  Enable  the  DoD  to  employ  the 
GIG  as  a  unified,  agile,  and  adaptive 
joint  weapons  system  that  meets 
warfighter  mission  needs. 


capability  is  perceived,  employed,  and 
managed.  Ensuring  that  the  combatant 
commands  can  effectively  employ  the 
GIG  will  require  that  it  be  dynamically 
operated  and  employed  as  a  single  uni¬ 
fied  agile  and  adaptive  enterprise, 
responsive  to  the  holistic  needs  of  the 
DoD  priorities  and  goals.  Having  the 
ability  to  maneuver  critical  data  or 
employ  GIG  capabilities  when  and 
where  they  are  needed  most  or  to  rapid¬ 
ly  change  the  configuration  of  the  GIG 
in  response  to  changing  mission  parame¬ 
ters  will  significantly  enhance  the  value 
of  the  GIG  to  the  warfighter  and  allow 
the  warfighter  to  fully  and  confidently 
leverage  the  power  of  GIG. 

Goal  3:  Co-evolve  and  mature  NetOps 
in-stride  with  GIG  capability  incre¬ 
ments. 


capability  increments  that  are  consistent 
with  the  defined  GIG  capability  incre¬ 
ments  and  support  them.  A  critical 
aspect  of  NetOps  transformation  is  the 
creation  of  policy,  governance  structure, 
implementation  plans,  and  metrics  for 
measuring  progress  that  will  be  necessary 
to  guide  NetOps  evolution. 

Conclusion 

Developing,  designing,  deploying  and 
operating  future  GIG  NetOps  capabili¬ 
ties  and  forces  will  require  a  unity  of 
effort  across  the  DoD.  It  will  require 
active  participation  from  across  the 
broadest  possible  cross-section  so  that 
the  DoD  can  achieve  the  common  goal 
of  a  GIG  that  can  be  effectively 
employed  to  support  the  many  missions 
of  the  DoD  in  an  increasingly  joint  and 
multi-partner  environment. ♦ 


The  DoD’s  growing  dependence  on  the 
GIG  as  the  primary  means  of  enabling 
and  delivering  a  wide  variety  of  com¬ 
mand  and  control  to  decision  makers  at 
aU  levels  highlights  the  need  for  recon¬ 
sidering  how  this  critical  warfighting 


As  GIG  capabilities  are  transformed  to 
support  NCO,  it  will  be  critical  to  imple¬ 
ment  and  mature  NetOps  capabilities  in 
a  structured  and  consistent  fashion.  It 
will  require  that  NetOps  capabilities  be 
developed  and  deployed  as  time-phased 
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Aligning  Technology  -  Protect  the  Net 

Securing  the  Global  Information  Grid  - 
The  Way  Ahead  for  Information  Assurance 


Richard  Aldrich  David  Zaharchek 

Boo^iyillen  Hamilton  IBM 


The  Department  of  Defense's  (DoD)  Information  Assurance  (LA)  Strategic  Plan  provides  a  solid  foundation  and  frame¬ 
work  for  securing  the  information,  and  the  DoD  has  reali^d  several  significant  accomplishments  across  each  of  five  goals  to 
effectively  increase  the  DoD's  security  posture  of  the  DoD.  Our  future  success  will  require  a  continued  focus  on  the  opera¬ 
tional  aspects  of  LA  to  combat  current  and  future  threats  in  real-world  operational  environments.  The  threats  facing  the  DoD 
are  real  Our  networks  are  under  attack  daily  and  our  adversaries  are  growing  ever  more  sophisticated.  To  effectively  defend 
its  systems  and  networks,  the  DoD  is  implementing  a  multi-layered,  defense-in-depth  approach. 


A 2006  report  released  by  the  General 
Accountability  Office  (GAO),  titled 
Suggested  Areas  for  Oversight  for  the  1 1 0th 
Congress  [1],  provided  recommendations 
for  36  oversight  areas  for  the  incoming 
110th  Congress.  One  recommendation 
included  in  the  GAO  report  suggested  the 
DoD  develop  and  implement  viable 
strategic  plans  with  goals,  objectives,  key 
milestones,  and  measures  to  monitor  and 
report  on  progress  in  transforming  its  key 
business  operations.  The  DoD  lA  com¬ 
munity  has  outpaced  the  GAO’s  recom¬ 
mendation  by  several  years  and  has  set  the 
standard  for  strategic  planning  within  the 
DoD.  The  DoD  I A  Strategic  Plan, 
released  in  January  2004,  provides  a  solid 
foundation  and  framework  for  securing 
the  DoD’s  information,  defines  the  DoD’s 
goals  and  objectives  for  lA,  and  provides 
a  consistent,  department-wide  approach 
for  securing  the  Global  Information  Grid 
(GIG).  The  DoD  lA  Strategic  Plan  has 
been  instrumental  in  defining  the  value 
proposition  and  building  a  convincing 
business  case  for  I A  —  resulting  in  more 
than  54  percent  real  growth  in  the  DoD’s 
I A  budget  since  1999. 

The  cornerstones  of  the  lA  Strategic 
Plan  are  its  five  goals: 

•  Goal  1:  Protect  information. 
Safeguarding  data  to  ensure  that  the 
level  of  trust  for  all  information  corre¬ 
sponds  with  mission  needs. 

•  Goal  2:  Defend  systems  and  net¬ 
works.  Recognizing,  reacting  to,  and 
responding  to  threats,  vulnerabilities, 
and  deficiencies. 

•  Goal  3:  Provide  integrated  lA/ 
Network  Operations  (NetOps). 

Providing  decision-makers  and  net¬ 
work  operators  at  all  command  levels 
with  the  tools  to  conduct  I  A/ 
Computer  Network  Defense  (CND) 
operations  and  net-centric  warfare. 

•  Goal  4:  Transform  and  enable  lA 
capabilities.  Discovering  emerging 


technologies,  experimenting,  improv¬ 
ing  process  life-cycle  time,  reducing 
risk  exposure,  and  increasing  return  on 
investment. 

•  Goal  5:  Create  an  lA  empowered 
workforce.  Establishing  an  lA  profes¬ 
sional  workforce  with  the  right  skills, 
in  the  right  place,  at  the  right  time. 
These  goals  are  enduring  and  serve  to 
define  a  consistent  strategic  direction  to 
keep  information  secure  and  trusted  while 
at  the  same  time  accessible.  The  DoD  has 
realized  several  significant  accomplish¬ 
ments  across  each  of  the  five  goals  to 
effectively  increase  the  security  posture  of 
the  DoD;  however,  while  the  DoD  has 
made  tremendous  progress  in  defining 
requirements,  developing  policies  and 
processes,  and  developing  and  deploying 
innovative  technical  solutions  to  the 
warfighters,  our  future  success  will  require 
a  continued  focus  on  the  operational 
aspects  of  lA  —  fusing  people,  processes, 
and  technologies  —  to  combat  current  and 
future  threats  in  real-world  operational 
environments. 

Efforts  are  under  way  to  ensure  person¬ 
nel  have  the  knowledge  and  skills  to  effec¬ 
tively  and  securely  operate  and  defend  the 
DoD’s  information  systems  and  networks. 
The  DoD  lA  Scholarship  Program  is  a 
highly  competitive  initiative  that  provides 
full  scholarships  to  students  who  attend 
National  Security  Agency-designated  cen¬ 
ters  of  academic  excellence  in  lA  education 
in  exchange  for  DoD  service.  Scholarships 
are  used  to  recruit  new  personnel  into  the 
DoD  and  to  provide  opportunities  for  cur¬ 
rent  employees  to  earn  advanced  degrees  in 
lA  related  disciplines. 

A  second,  and  much  broader,  initiative 
is  the  lA  Workforce  Improvement 
Program.  Its  focus  is  managing  and  pro¬ 
fessionalizing  the  lA  workforce.  To  do 
this,  the  program  leverages  commercial 
information  technology  security  certifica¬ 
tions,  such  as  those  offered  by 


International  Information  Systems  Se¬ 
curity  Certification  Consortium,  Infor¬ 
mation  Systems  Audit  and  Control  Asso¬ 
ciation,  System  Administrator,  Audit, 
Network,  Security  Consortium,  Compu¬ 
ting  Technology  Industry  Association,  and 
Security  Certified  Program,  to  establish  a 
DoD  baseline  of  lA  workforce  knowledge 
and  skills.  All  personnel  performing  lA 
functions  —  military,  civilian,  and  contrac¬ 
tor  —  are  expected  to  meet  the  require¬ 
ment,  whether  they  do  the  work  as  a  pri¬ 
mary  duty  or  as  an  additional  or  embed¬ 
ded  duty.  Currently,  components  are  in  the 
process  of  identifying  and  documenting 
their  lA  workforce  and  preparing  them  to 
be  certified  to  the  DoD-wide  baseline. 

The  DoD  is  a  robust,  worldwide  orga¬ 
nization  that  leverages  its  capabilities 
through  information  systems  and  net¬ 
works.  The  increasing  reliance  upon  these 
information  systems  and  networks  for  our 
nation’s  defense  makes  their  protection 
critically  important.  As  the  DoD  becomes 
more  net-centric,  it  becomes  more  vulner¬ 
able  to  shared  risks  where  the  vulnerabili¬ 
ties  of  one  part  of  the  network  could 
adversely  impact  many  others. 

The  threats  facing  the  DoD  are  real. 
Our  networks  are  under  attack  daily  and  our 
adversaries  are  growing  ever  more  sophisti¬ 
cated.  The  DoD’s  information  infrastruc¬ 
ture,  the  GIG,  globally  pervasive  and  com¬ 
prised  of  millions  of  hosts  and  thousands 
of  networks,  is  subject  to  hundreds  of  thou¬ 
sands  of  attacks,  scans,  and  other  incidents 
every  year.  To  effectively  defend  its  systems 
and  networks,  the  DoD  is  implementing  a 
multi-layered,  defense-in-depth  approach. 
Some  of  these  enterprise  defense-in-depth 
initiatives  include  the  following: 

•  The  fielding  of  two  commercial  tool 
suites,  one  to  scan  for  vulnerabilities 
(Secure  Configuration  Compliance  Vali¬ 
dation  Initiative)  and  one  to  remediate 
them  (Secure  Configuration  Remedia¬ 
tion  Initiative).  The  tools  can  also 
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check  for  compliance  with  best  securi¬ 
ty  practices  as  specified  in  the  DoD’s 
security  technical  implementation 
guides  and  take  remedial  actions  as 
appropriate.  Using  these  tools,  the  sys¬ 
tem  administrators  can  rapidly  identify 
and  patch  vulnerabilities. 

•  Increased  protection  measures  on  each 
computer  and  server.  The  DoD  will 
soon  deploy  an  enterprise-wide  host- 
based  security  system  capability  that 
will  field  an  integrated  package  of  host- 
based  security  applications  to  help  fight 
today’s  dynamic  network  threats.  These 
include  the  intrusion  detection  system, 
host-based  intrusion  prevention  sys¬ 
tem,  host-based  firewall,  file  integrity 
monitoring  and  alerting,  execution  con¬ 
trol,  self-enforcing  configuration  con¬ 
trol,  and  information  condition  man¬ 
agement  capability.  As  the  DoD 
increasingly  encrypts  its  communica¬ 
tions  to  the  end  user,  bolstering  defens¬ 
es  at  the  host  level  is  becoming  critical. 

•  Two  initiatives  supporting  insider 
threat  mitigation.  One  effort  is  direct¬ 
ed  broadly  at  detecting  the  threat  and 
the  second  is  focused  on  monitoring 
those  who  are  suspected  insiders. 
Contracts  for  this  enterprise  capability 
should  be  awarded  in  the  near  term. 

•  Attribution  capability  to  identify  the 
originators  of  cyber  attacks.  This  capa¬ 
bility  is  key  to  the  appropriate  NetOps 
response.  As  such,  the  DoD  has  initi¬ 
ated  a  bolstered  forensics  effort  that 
will  facilitate  detailed  analysis  of  sys¬ 
tems  that  were  attacked.  In  addition, 
the  DoD  is  also  developing  a  honeygrid 
capability  as  a  means  of  identifying, 
distracting,  and  diverting  attackers. 

•  Hardening  of  the  DoD’s  IT  infrastruc¬ 
ture  with  additional  firewalls  and 
demilitarized  zones  (DMZs).  The 
DMZ  approach  provides  a  separate 
interface  to  the  Internet  and  external 
DoD  connections,  thus  limiting  non- 
classified  Internet  Protocol  Router 
Network  vulnerabilities  to  malicious 
attacks,  worms,  and  viruses  that  plague 
the  Internet.  The  DMZ  also  mediates 
and  regulates  external  access  to  DoD 
applications,  data,  and  public  informa¬ 
tion  services  pages. 

Deployment  and  distribution  of  enter¬ 
prise  security  tools  have  been  accom¬ 
plished  by  various  means.  These  include 
direct  download  of  the  software  licenses 
from  the  DoD  server  to  the  individual 
user/ system  administrator  as  well  as  direct 
installation  of  tools  by  the  DoD  or  inte¬ 
gration  contract  resources  to  implement 
the  tools  within  a  local  site.  Tools  desig¬ 
nated  for  general  use  throughout  the 


enterprise  are  normally  operated  by  the 
system  administrators  at  each  of  the  com¬ 
ponent  enclaves.  However,  a  centralized 
help  desk,  supporting  most  of  the  enter¬ 
prise  capabilities,  has  been  established 
within  the  Defense  Information  Systems 
Agency  to  provide  information  and  assis¬ 
tance  for  tool  installation  and  operation 
for  all  DoD  users. 

Components  receive  updates  to  enter¬ 
prise  tools  as  well  as  new  capabilities 
through  either  the  normal  component 
budgeting  process  and/or  in  combination 
with  the  DoD  enterprise  solutions  steer¬ 
ing  group.  This  steering  group  provisions 
general  CND  tools  enterprise-wide  based 
on  identified  requirements  and  funding 
constraints. 

The  DoD  recognizes  securing  this  vast 
network  of  networks  requires  more  than 
technological  solutions.  To  synchronize 
these  efforts,  the  DoD  developed  an  lA 
component  of  the  GIG  architecture  that 
defines  required  capabilities  to  secure  the 
GIG.  These  have  been  further  defined  as 
the  lA  capability  areas  and  are  managed  as 
an  lA  capability  portfolio.  Portfolio  man¬ 
agement  has  been  fully  embraced  by  the 
DoD  and  provides  a  framework  for  ana¬ 
lyzing  lA  investments.  The  GIG  lA 
Portfolio  Management  Office  manages 
the  lA  Capability  Portfolio  by  looking  at 
the  many  initiatives  being  funded  by  ele¬ 


ments  across  the  DoD  in  a  disciplined  and 
unified  manner,  aligning  these  investments 
against  the  GIG  lA  architecture  and  the 
I A  Strategic  Plan  and  projecting  anticipa¬ 
tory  research  to  address  critical  challenges 
in  securing  the  GIG. 

The  threat  environment  is  constantly 
changing  and  evolving,  unconstrained  by 
state  and  national  borders.  To  overcome 
these  challenges,  the  DoD  is  diligently 
working  to  improve  and  harden  its  defens¬ 
es  while  expanding  cooperation  with 
national  and  international  partners.  The 
lA  strategic  plan  lays  the  foundation  for 
securing  the  GIG.  However,  our  future 
success  requires  the  dedication,  commit¬ 
ment,  and  personal  vigilance  on  the  part 
of  all  GIG  users.  In  addition  to  our 
efforts  to  secure  the  GIG  through  the 
deployment  of  new  capabilities  and  the 
establishment  of  policies,  we  must  estab¬ 
lish  a  climate  of  security  consciousness, 
commit  resources,  organize  and  train  per¬ 
sonnel,  and  accept  responsibility  for  pro¬ 
tecting  the  GIG  to  achieve  mission  suc¬ 
cess.  Securing  the  GIG  is  the  responsibili¬ 
ty  of  us  all.^ 
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Reaching  the  Goal  -  Build  the  Net 


Spiraling  Information  Demands -The  Way  Ahead  With  IPv6 

Kristopher  L.  Strance 
Office  of  A^ssistant  Secretary  of  Defense 

The  achievement  of  Net-Centric  Operations  and  Wafare  (NCOW),  envisioned  as  the  Global  Information  Grid  (GIG)  of 
inter-networked  sensors,  plaforms,  facilities,  people,  and  information,  depends  on  effective  implementation  of  Internet  Protocol 
Version  6  (IPv6 )  in  concert  with  other  aspects  of  the  GIG  architecture. 

—  Department  of  Defense  Chief  Information  Officer  (DoD  CIO)  Memorandum,  June  2003 


I  IPv6  is  the  next-generation  network 
layer  protocol  for  the  Internet  and  the 
DoD  GIG. 

The  current  version  of  IP,  IPv4,  was 
developed  in  the  1970s  and  is  the  basis 
of  interoperability  for  today’s  Internet 
and  many  DoD  networks.  However, 
IPv4  has  limitations  that  inhibit  the  end- 
to-end  paradigm  of  the  Internet  and 
achievement  of  the  DoD’s  vision  of  net- 
centric  operations. 

IPv6  has  been  under  development  by 
the  Internet  community  for  more  than  a 
decade  and  is  designed  to  overcome 
IPv4  limitations  by  greatly  expanding 
available  IP  address  space  and  integrat¬ 
ing  features  such  as  end-to-end  security, 
mobile  communications.  Quality  of 
Service  (QoS),  and  simplified  network 
management.  The  numerous  fixes  and 
extensions  implemented  to  overcome 
IPv4  limitations  often  have  increased 
network  complexity  and  slowed  network 
performance.  The  DoD  transition  to 
IPv6  will  add  functionality  and  reduce 
network  complexity. 

Why  Is  IPv6  Transition 
Important  to  the  DoD? 

The  DoD  seeks  to  build  a  more  agile, 
robust,  interoperable,  and  collaborative 
net- centric  environment  where  warfight¬ 
ers,  intelligence,  and  business  users  share 
information  on  a  secure,  dependable, 
and  global  network.  This  NCOW  net¬ 
work  will  enable  superior  decision-mak¬ 
ing  and  more  effective  military  opera¬ 
tions  through  network  ubiquity  and  seal- 
ability,  globally  routable  addresses,  net¬ 
work  support  of  QoS,  enhanced  plug- 
and-play/  mobility,  auto-configuration, 
improved  multicast,  end-to-end  security, 
and  improved  network  maintainability. 

In  the  GIG,  IP  is  the  common  net¬ 
work  protocol  that  allows  all  types  of 
data  to  move  seamlessly  on  the  GIG’s 
diverse  transport  layer  which  includes 
landline,  radio,  and  space-based  ele¬ 
ments.  Due  to  fundamental  limitations 
of  the  current  IPv4  protocol  for  the 
long-term  networking  requirements  of 


the  DoD  and  commercial  community, 
IPv6  is  a  critical  enabler  in  achieving  the 
DoD’s  vision  of  the  NCOW. 

Challenges  of  Transitioning 
to  IPv6 

The  DoD  strategy  for  transitioning  to 
IPv6  is  based  on  technology  refreshment 
of  the  DoD  Information  Technology 
(IT)  infrastructure.  This  poses  a  daunt¬ 
ing  challenge  since  this  infrastructure  is 
distributed  across  all  DoD  components, 
geographically  dispersed,  and  managed 
through  a  complex  and  interdependent 
mesh  of  DoD  programs  and  projects. 
The  IPv6  technologies  to  support  the 
operational  needs  of  this  varied  set  of 
users  are  still  being  developed,  especially 
with  respect  to  security  and  mobility. 
The  DoD  faces  specific  challenges  in  the 
following  four  categories: 

•  Prioritizing  IPv6  resources  by  DoD 
components. 

•  Training  experienced  IPv6  IT  staff  to 
support  testing,  operations,  and 
maintenance. 

•  Availability  of  IPv6  capable  products 
and  advanced  IPv6  features. 

•  Scheduling  dependencies  and  coordi¬ 
nating  DoD  networks. 

To  manage  the  security  challenges 
and  associated  risks,  the  DoD  has  estab¬ 
lished  a  set  of  milestone  objectives  to 
guide  the  development  of  information 
assurance  security  configurations  and 
allow  transition  to  occur  only  after 
understanding  the  vulnerabilities. 
Milestone  Objective  1  provides  DoD 
components  the  authority  to  operate  using 
IPv6  within  approved  isolated  network  domains 
(enclaves).  Milestone  Objective  2  pro¬ 
vides  authority  to  operate  using  IPv6  across 
cooperative  multi-domain  environments  (trans¬ 
port).  Milestone  Objective  3  will  be 
reached  when  Defense  Information  Systems 
Networks  and  DoD  components^  core  IP  infra¬ 
structures  are  capable  of  accepting,  routing, 
and  processing  IPv6  protocol  traffic  while  pro¬ 
viding  parity  to  IPv4. 

The  DoD  intends  to  manage  transi¬ 
tion  risks  in  the  areas  of  interoperability. 


performance,  and  security  by  a  measured 
and  controlled  approach  and  to  field 
IPv6  capabilities  using  pilot  implementa¬ 
tions  and  test  and  evaluation  activities. 
The  DoD  IPv6  Master  Test  Plan^  identi¬ 
fies  17  DoD  test  facilities  and  networks 
to  conduct  IPv6  test  and  evaluation.  One 
of  the  DoD  test  networks  is  the  Defense 
Research  and  Engineering  Network 
(DREN).  DREN  provided  an  early  DoD 
network  IPv6  pilot  implementation,  pri¬ 
marily  to  support  DoD  IPv6  research 
and  test  requirements.  Although  the 
DREN  only  partially  represented  the 
DoD’s  complex  networks,  valuable 
lessons  have  been  learned,  including  the 
following: 

•  IPv6  performance  was  approximately 
the  same  as  IPv4  on  various  stress 
tests. 

•  Using  defense-in-depth  concepts, 
IPv6  security  was  comparable  to 
IPv4  for  Wide  Area  Network  and  site 
protection. 

•  Training  requirements  were  minimal 
for  personnel  already  familiar  with 
IPv4. 

•  Most  equipment  at  the  sites  could  be 
upgraded  to  IPv6. 

More  work  is  required  in  test  and 
pilot  implementations.  However,  early 
DREN  efforts  and  results  provided  an 
optimistic  start. 

Way  Ahead 

The  DoD  embarked  on  the  journey  to 
IPv6  in  June  2003  when  the  DoD  CIO 
established  the  goal  to  transition  to  IPv6 
by  fiscal  year  2008.  We  have  further 
refined  the  goal  to  transition  our  core 
networks  to  provide  a  service  offering  of 
IPv6  by  that  date,  with  other  DoD  net¬ 
works,  infrastructures,  and  applications 
to  follow.  The  road  map  to  achieve  this 
goal  is  being  developed  now.  The 
Defense  Information  Systems  Agency 
(DISA)  has  developed,  and  is  now  exe¬ 
cuting,  IPv6  transition  plans  for  our  core 
enterprise  networks.  DISA  is  integrating 
the  IPv6  implementation  schedules  for 
other  DoD  component  core  networks 
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into  the  enterprise  networks  transition 
plans.  We  have  developed  a  DoD  IPv6 
master  test  plan  to  coordinate  all  IPv6 
related  testing  activities  across  the  DoD 
and  promote  efficient  use  of  DoD  test 
and  evaluation  resources.  The  DoD  has 
acquired  IPv6  address  space  and  is  devel¬ 
oping  a  DoD  IPv6  addressing  plan.  We 
recognize  that  DoD  IPv6  transition 
progress  depends,  to  a  great  degree,  on 
industry’s  transition  to  IPv6.  The  DoD 
continues  to  collaborate  with  industry 
standard’s  bodies  to  ensure  DoD 
requirements  are  reflected  in  evolving 
IPv6  standards. 

Effective  implementation  of  IPv6, 
through  synchronized  planning  and 
comprehensive  testing,  in  concert  with 
other  aspects  of  GIG  architecture  devel¬ 
opment,  will  enable  the  DoD  to  achieve 
the  net-centric  vision.^ 

Note 

1 .  Can  be  accessed  at  <https: / / gesportal. 
dod.mil/ sites/JITCIPv6/tewg/ default 
.aspx?RootFolder=%2fsites%2^ITCI 
Pv6%2ftewg%2fDocument%20Lib 
rary%2fl  %2fJoint%20Staff%20IPv6 
%200perational%20Criteria&View= 
%7bA84Al  771  %2dOACl  %2d4003 
%2dB341  %2dC6D8EF28FA40%7d>, 
but  a  DoD  Common  Access  Card  is 
required. 
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those  attributes  critical  to  the  realization 
of  interoperable  shared  services  through¬ 
out  the  DoD. 

Way  Ahead.  A  common  infrastructure 
enables  force  capabilities  to  be  readily  net¬ 
worked  in  support  of  joint  warfighting 
and  operations.  Interoperability  of  capa¬ 
bilities  is  improved  when  military  services, 
agencies,  and  mission  partners  create 
reusable  building  blocks  through  the  use  of 
services.  NCES  is  a  key  provider  of  build¬ 
ing  block  services  as  part  of  the  common 
infrastructure  to  be  leveraged  across  the 
DoD  and  its  mission  partners  in  the 
development  of  information  sharing 
capabilities. 

The  NCES  program  needs  to  continue 
working  collaboratively  with  the  DoD 
community  to  expedite  the  delivery  of  its 
common  infrastructure  services,  related 
standards,  and  guidance  for  using  its  ser¬ 
vices. ♦ 
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The  term  metadata  is  often  misused  and  misunderstood.  It  is  important  to  understand  the  categories,  multiple  meanings,  and 
value  of  using  metadata  to  improve  the  interoperahilitg,  discovery,  and  utility  of  data  assets  throughout  the  Department  of 
Defense  (DoD).  Proper  use  and  understanding  of  metadata  can  substantially  enhance  the  utility  of  data  by  making  it  more 
visible,  accessible,  and  understandable.  Expanded  use  of  metadata  leads  to  better-informed  decision  making,  improved  man¬ 
agement  of  information,  increased  return  on  investment  for  digital  asset  production  and  publishing,  improved  security  man¬ 
agement,  and  more  effective  information  sharing. 


The  DoD  Net-Centric  Data  Strategy 
requires  that  information  assets  be 
tagged  with  metadata.  The  concept  of 
metadata  can  be  confusing  and  many 
people  are  unclear  how  metadata  con¬ 
tributes  to  the  mandates  of  improved 
discovery,  accessibility,  and  under  stand- 
ability. 

There  are  many  reasons  to  use  meta¬ 
data.  First,  it  improves  precision  search 
for  specific  queries;  second,  it  clarifies 
context  for  understanding;  third,  it 
allows  identification  of  security  classifi¬ 
cations/controls.  Expanded  use  of 
metadata  leads  to  better-informed  deci¬ 
sion  making,  improved  management  of 
information,  increased  return  on  invest¬ 
ment  for  digital  asset  production  and 
publishing,  and  improved  security  man¬ 
agement  and  information  sharing.  The 
best  metadata  provides  a  rich  description 
of  information  assets  so  that  a  simple 
search  query  produces  meaningful 
results  in  which  a  user  can  easily  deter¬ 
mine  the  usefulness  of  the  data  asset. 
Good  metadata  enables  users  to  avoid 
sorting  through  many  search  responses 
that  are  not  relevant  because  of  context 
conflicts  or  file  type  mismatches,  thereby 
reducing  time  for  decision-making. 

In  its  simplest  meaning,  metadata  is 
information  about  something.  The  term 
metadata,  as  used  in  this  article,  refers  to 
structured  definitions  that  describe  the 
properties  of  distinct  computer  data 
assets.  Metacard  is  the  term  often  used  to 
describe  the  aggregate  of  metadata 
about  a  particular  asset  similar  to  the 
notion  of  a  catalog  card  in  a  library.  An 
example  of  metadata  is  the  description 
of  a  music  file  specifying  the  creator,  the 
artist  that  performed  the  song,  the  data 
created,  the  length  of  play  time,  album 
name,  and  the  genre.  Without  resource 
metadata,  portable  digital  music  players 
would  not  be  so  popular  due  to  the  diffi¬ 
culty  in  creating  and  sorting  playlists  or 
finding  particular  songs.  Another  exam¬ 


ple  may  be  a  metacard  that  contains 
information  regarding  an  improvised 
explosive  device  (lED)  event  database. 
The  lED  metacard  may  include  details 
such  as  security  classification,  geograph¬ 
ic  locations  covered,  event  type,  time, 
point  of  contact  for  access  to  the  data  (if 
not  already  granted),  etc.  Metadata  is 
much  more  than  just  keyword  tags;  it 
provides  richer  information.  Many  exist¬ 
ing  programs  and  applications  automati¬ 
cally  produce  metadata  when  data  is  cre¬ 
ated.  For  example,  standard  commercial 
word  processing  applications  produce 
metadata  such  as  title,  time  stamp,  author 
or  creator,  and  type  of  file. 

* ‘Metadata  can  be 
categorized  in  numerous 
ways,  but  three  ...  are 
resource  (bibliographic), 
structural,  and  semantic.^* 

Metadata  can  be  categorized  in 
numerous  ways,  but  three  principle  cate¬ 
gories  are  resource  (bibliographic),  struc¬ 
tural,  and  semantic.  Resource  metadata 
contributes  principally  to  visibility  of  an 
information  asset.  Resource  metadata 
includes  security  classification,  title, 
description,  creator,  publish  date,  and 
other  attributes.  Resource  metadata  is 
similar  in  concept  to  cards  in  a  library 
catalog  used  to  locate  books.  In  this  case, 
metadata  helps  the  user  locate  data  or 
services.  The  DoD  has  published  the 
DoD  Discovery  Metadata  Specification 
(DDMS)  (https://meta-data.dod.mil)  to 
define  a  particular  type  of  resource 
metadata  to  support  precision  search. 

Structural  metadata  is  critical  to 
accessibility  and  usability.  It  includes 
schemas  and  models  that  describe  struc¬ 


ture  and  formatting  which  are  critical  to 
interoperability  and  the  management  of 
databases.  Going  back  to  the  portable 
music  player  example,  not  all  devices  play 
all  audio  and  video  file  formats. 
Designation  of  file  format  lets  a  user 
match  the  file  type  to  his  device.  In  the 
case  of  a  warfighter  looking  for  informa¬ 
tion,  he  may  have  a  desktop  that  is  limit¬ 
ed  to  the  types  of  files  (i.e.  Portable 
Document  Format  or  Power  Point)  he 
can  view  and  by  knowing  file  type  or 
size,  the  user  can  download  accordingly. 

Semantic  metadata  helps  with  under- 
standability  of  terms  and  includes  shared 
vocabularies,  taxonomies,  and  ontolo¬ 
gies.  Communities  of  Interest  (COIs) 
usually  speak  in  their  own  vernacular. 
Terms  often  have  unique  meanings  with¬ 
in  a  given  COFs  context,  and  metadata 
enhances  understanding  of  their  terms. 
As  an  example,  the  data  element  or  term 
frequency  may  relate  to  radio  spectrum  in 
the  signals  intelligence  community,  but 
frequency  may  relate  to  the  periodicity  of 
payments  for  the  finance  community.  It 
is  unreasonable  and  unrealistic  to  have  a 
single  meaning  across  the  entire  DoD  for 
that  term.  However,  within  particular 
COIs,  terms  should  have  specific  mean¬ 
ings.  Once  a  user  recognizes  a  term  is 
from  a  particular  community,  then  she 
can  better  relate  to  the  term  and  under¬ 
stand  its  meaning  and  applicability.  For 
several  years,  the  DoD  attempted  to 
standardize  data  elements  with  a  single 
common  meaning  across  the  DoD. 
Considering  the  DoD’s  size  and  broad 
set  of  communities  and  missions, 
department-wide  data  element  standard¬ 
ization  was  not  successful.  The  DoD 
now  recognizes  the  concept  of  COIs 
and  is  fostering  an  environment  for  each 
COI  to  describe  their  vocabularies  using 
metadata. 

A  number  of  metadata-related  activi¬ 
ties  are  under  way  throughout  the  DoD. 
To  promote  effective  use  of  metadata. 


www.stsc.hill.af.mil  I  7 


July  2007 


Enabling  Technologies  for  Net-Centricity 


the  DoD  has  issued  the  DoD  Net 
Centric  Data  Strategy  Directive  8320.2, 
<www.dtic.mil/whs/directives/corres/ 
html/832002.htm>,  the  DDMS,  DoD 
Net-Centric  Data  Strategy  Program, 
Decision  Memorandum  III,  and  other 
implementing  guidance.  The  Defense 
Information  Systems  Agency  (DISA) 
chairs  the  DoD  Metadata  Working 
Group  which  meets  bi-monthly  to 
address  a  variety  of  metadata  topics. 
DISA  also  manages  the  DoD  Metadata 
Registry  and  Clearinghouse  as  well  as  the 
COI  Directory.  The  DoD  Metadata 
Registry  and  Clearinghouse  provides 
software  developers  access  to  data  tech¬ 
nologies  to  support  DoD  community 
mission  applications.  Through  the 
Metadata  Registry  and  Clearinghouse, 


software  developers  can  access  registered 
extensible  markup  language  data  and 
metadata  components,  database  seg¬ 
ments,  reference  data  tables,  and  related 
metadata  information.  These  data  tech¬ 
nologies  increase  the  DoD’s  core  capa¬ 
bilities  by  integrating  common  data  and 
enterprise  data  services  built  from 
reusable  data  components.  For  more 
information  on  the  referenced  items,  see 
<www.dod.mil/cio-nii>  and  <http:// 
metadata.dod.mil>.  For  the  DoD  to  suc¬ 
cessfully  operate  in  a  net-centric  environ¬ 
ment,  people  must  understand  metadata. 
Metadata  is  a  key  element  of  information 
sharing  and  interoperability.  For  further 
information,  see  <http://metadata.dod. 
mil>.^ 
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Letter  to  the  Editor 


Dear  CrossTalk  Editor: 

The  function  point  analysis  (FPA)  described  in  Ian  Brown’s  arti¬ 
cle  Controlling  Software  A^cquisition  Costs  with  ¥  unction  Points  and 
Estimation  Tools  implies  the  estimating  tool  accepts  adjusted 
function  points  (AFPs)  per  International  Function  Point  Users 
Group  (IFPUG)  standard  4.2  as  input  and  allows  the  estimator 
to  perform  trade-off  analyses  to  arrive  at  an  acceptable  cost  and 
schedule. 

The  FP  count  is  backfired  into  equivalent  source  lines  inter¬ 
nal  to  the  estimating  tool.  The  AFP  provides  a  single  valued 
input,  unless  there  is  a  variance  associated  with  the  FP  count, 
which  will  produce  a  point  estimate.  The  outputs  produced  in 
the  article  are  all  related  to  output  distributions  of  cost  and 
schedule.  Point  inputs  produce  point  outputs.  Are  we  to  assume 
the  AFP  produces  an  input  with  low  —  most  likely  —  and  high 
FP  counts?  The  article  also  discusses  the  use  of  commercial 
off-the-shelf  (COTS)  and  reused  components  as  part  of  the 
trade-off  analysis.  The  use  of  these  components  in  the  trade¬ 
off  analysis  raises  the  zero  function  point  problem  when  deal¬ 
ing  with  the  cost  and  schedule  impact  associated  with  reused 
system  components. 

-  Dr.  Randall  Jensen 
<  randall.  j  ens  en@hill.  af  mil> 

Dear  CrossTalk  Editor: 

In  spite  of  the  fact  that  function  points  have  been  around  for 
more  than  a  quarter  of  a  century  now,  there  are  still  many  mis¬ 
conceptions  and  misunderstandings  about  function  points.  Let 
me  address  each  point  in  turn. 

First,  most  estimation  tools  accept  unadjusted  function 
points  as  a  sizing  input.  The  tools  rely  on  more  targeted  para¬ 
meters  such  as  multiple  site  development,  reuse  required,  and 
requirements  volatility  to  calculate  estimation  adjustments  that 
might  have  been  handled  by  the  general  systems  characteristics 
and  AFPs  before  parametric  tools  were  as  prevalent  as  they  are 
today. 

Second,  function  points  are  but  one  input  into  an  estimation 
tool.  Other  cost  drivers,  such  as  personnel  capabilities  and 
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experience,  development  environment,  and  product  require¬ 
ments  are  used  to  tailor  the  cost  estimate  to  the  particular  pro¬ 
gram.  Very  often  these  parameters  are  expressed  as  ranges  -  par¬ 
ticularly  in  an  acquisition  environment  where  specific  informa¬ 
tion  may  not  be  available.  For  example,  the  program  office  may 
have  a  minimum  Capability  Maturity  Model®  Integration  level 
required  for  the  vendor,  which  would  set  a  minimum  level  for 
some  of  these  parameters.  But  some  vendor  may  bid  that  per¬ 
forms  well  above  that  level,  so  the  acquisition  cost  framework 
should  include  a  range  of  inputs  to  account  for  this  possibility. 
When  any  of  the  input  parameters  are  set  as  ranges,  the  estima¬ 
tion  tool  will  produce  a  range  of  cost  and  schedule  outputs. 
That  being  said.  Dr.  Jensen  does  bring  up  an  excellent  point:  the 
function  point  count  itself  may  be  expressed  as  a  range  (low, 
likely,  and  high).  The  acquisition  process  may  be  in  such  an  early 
stage  that  requirements  may  not  be  fully  defined,  or  there  may 
be  some  uncertainty  associated  with  system  functionality.  In  this 
case,  it  is  completely  appropriate  to  use  a  size  range  to  develop 
the  acquisition  cost  and  schedule  framework. 

Finally,  let’s  talk  about  the  ^ero  function  point  problem.  Function 
points  measure  software  size  independent  of  language,  technol¬ 
ogy,  or  platform  -  and  that  includes  COTS  and  reused  compo¬ 
nents.  If  I’ve  got  a  set  of  requirements  that  translates  into  500 
function  points,  and  I  decide  to  use  a  COTS  product  to  meet 
half  of  those  requirements.  I’ve  still  got  system  that  is  500  func¬ 
tion  points  in  size.  It  did  not  all  of  a  sudden  just  become  250 
function  points.  I  would  simply  have  to  model  the  effort  differ¬ 
ently  in  the  estimation  tool  than  I  would  if  all  requirements 
would  be  custom  developed.  I  would  need  to  make  sure  that  I 
knew  how  to  reflect  these  differences  appropriately  in  the  para¬ 
metric  model.  This  is  why  you  need  an  experienced  person 
working  with  the  tool.  A  fool  with  a  tool  is  still  a  fool  —  these 
tools  are  powerful  and  flexible  enough  that  you  can  get  all  kinds 
of  answers  out  of  them,  and  the  trick  is  understanding  if  you’ve 
got  the  inputs  set  up  right. 

—  Ian  Brown 
<brown_ian@bah.com> 

®  Capability  Maturity  Model  is  registered  in  the  U.S.  Patent  and  Trademark  Office  by 
Carnegie  Mellon  University. 
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Managing  the  Air  Waves:  Dynamic  Spectrum  Access  and  the 
Transformation  of  DoD  Spectrum  Management 


Thomas  J.  Taylor 
Office  of  the  Assistant  Secretary  of  Defense 


The  electromagnetic  spectrum  is  a  finite  resource  that  enables  the  first  tactical  mile  of  the  Global  Information  Grid.  From  radars 
that  gather  information,  to  networks  that  transfer  the  information  and  targeting  for  precision  guided  munitions;  the  electromag¬ 
netic  spectrum  is  a  critical  resource  that  enables  us  to  do  more  with  less  human  capitol  Along  with  the  Department  of  Defense!^ 
(DoD)  increase  in  dependency  on  this  resource,  the  commercial  sector  is  also  increasing  its  requirements  for  more  and  better  spec¬ 
trum  access.  As  a  result,  the  DoD  is  transforming  its  electromagnetic  spectrum  management  capabilities  to  meet  future  demands. 


The  DoD  is  in  the  process  of  transform¬ 
ing  its  legacy  spectrum  management  pro¬ 
cesses  and  capabilities  to  address  the  ever 
changing  Global  War  On  Terror  and  provide 
for  net-centric  military  operations.  This 
transformation  envisions  assured  access  to 
spectrum  by  warfighters  anytime  and  any¬ 
where,  a  prerequisite  for  the  untethered,  reli¬ 
able,  and  ubiquitous  wireless  networking 
component  of  net-centhc  operations.  To  fully 
realize  this  vision,  the  DoD  has  focused  on 
developing  net-centric  spectrum  capabilities 
to  help  us  plan  and  manage  the  following: 

•  On-the-move  dynamic  operations  (which 
also  require  environmental  awareness). 

•  Sustained  growth  of  spectrum  require¬ 
ments  by  the  DoD  systems. 

•  Emerging  commercial  wireless  systems 
and  requirements  for  additional  spectrum. 
•  Flexible  policies  and  processes  to  support 
global  deployments. 

•  Complete  life-cycle,  end-to-end,  spec¬ 
trum  supportability  processes  and  tools. 
In  response  to  challenges  in  operational, 
technical,  and  regulatory  areas,  the  DoD 
spectrum  community  is  updating  spectrum 
management  strategic  plans  and  policies  that 
win  guide  the  transformation  of  DoD  spec¬ 
trum  access.  In  2006,  the  DoD  stood  up  the 
Defense  Spectrum  Organization  (DSO), 
which  combines  the  Joint  Spectrum  Center 
(JSC)  and  the  Defense  Spectrum  Office,  to 
become  the  center  of  excellence  for  spec¬ 
trum  under  Defense  Information  Systems 
Agency  (DISA).  The  new  organization  is 
responsible  for  developing  the  comprehen¬ 
sive  and  integrated  spectrum  plans  and  long¬ 
term  strategies  to  help  DoD  rise  to  the  chal¬ 
lenge.  Additionally,  the  DSO  provides  the 
operational  support  center  required  by  joint 
commands  to  meet  their  global  missions. 

The  most  important  element  of  this 
transformation  includes  the  development  of 
improved  tools,  data  systems,  and  services 
that  support  the  entire  range  of  spectrum 
activities  including  strategic  planning  acquisi¬ 
tion  support  and  mission  operations.  This 
capability  is  captured  by  a  new  system  called 


the  Global  Electromagnetic  Spectrum  In¬ 
formation  System  (GEMSIS).  The  GEMSIS 
program  will  develop  a  suite  of  capabilities 
that  will  improve  spectrum  deconfliction  in 
the  operational  environment,  enhance  inte¬ 
gration  of  frequency  assignment  processes 
with  mission  planning,  develop  new  spec¬ 
trum  services  for  the  acquisition  community, 
and  provide  the  policy  for  dynamic  spectrum 
access  (DSA). 

In  order  to  achieve  global  access  to  spec¬ 
trum  for  our  networks  in  the  new  operating 
environment,  DSA  has  emerged  as  a  capabil¬ 
ity  that  has  the  potential  to  effectively  address 
network  spectrum  resource  challenges  by 
allowing  more  dynamic,  flexible,  and  auto¬ 
nomous  spectrum  access.  DSA  is  realized 
through  wireless  networking  architectures 
and  technologies  that  enable  wireless  devices 
to  dynamically  adapt  their  spectrum  access 
according  to  criteria  such  as  policy  con¬ 
straints,  spectrum  availability,  propagation  en¬ 
vironment,  and  application  performance  re¬ 
quirements.  The  basic  concept  of  DSA  is 
that  spectrum-dependent  systems  can  dy¬ 
namically  change  their  parameters  to  access 
multiple  dimensions  of  the  spectrum 
resource  including  frequency,  space,  time,  and 
signal  codes.  This  agility,  coupled  with  en¬ 
hanced  distribution  of  spectrum  data  directly 
to  spectrum-dependent  systems,  will  enable 
these  systems  to  share  in  near-real  time  the 
spectrum  resource  among  a  large  number  of 
users,  improving  the  utilization  of  spectrum. 
Transforming  from  the  current  static  spec¬ 
trum  allocation  to  DSA  is  analogous  to  the 
paradigm  shift  from  the  circuit- switched  to 
packet- switched  networking,  where  signifi¬ 
cant  efficiency  gain  and  improvement  in 
interoperability  can  be  realized. 

DSA  can  be  broadly  classified  into  two 
categories:  coordinated  DSA  and  oppor¬ 
tunistic  DSA.  Coordinated  DSA  requires  a 
spectrum  control  and  management  infra¬ 
structure.  One  envisioned  concept  utilizes  a 
set  of  control  nodes  (spectrum  brokers)  that 
are  responsible  to  dynamically  allocate  spec¬ 
trum  within  a  geographical  area  to  support  a 


group  of  users.  Opportunistic  DSA  adopts  a 
distributed  model  where  a  group  of  devices 
autonomously  sense  the  environment  and 
access  spectrum  according  to  pre-defined 
policies.  The  system  developed  under  the 
Defense  Advanced  Research  Projects  Agen¬ 
cy  XG  (next  generation)  program  imple¬ 
ments  an  opportunistic  approach  to  DSA. 
Regardless  of  form,  DSA  systems  will 
require  new  data  and  knowledge  representa¬ 
tion  constructs  and  software-based  autono¬ 
mous  processing  capabilities. 

Effective  DSA  requires  the  full  breadth 
of  spectrum  management  to  be  brought  to 
bare.  First,  the  DoD  must  identify  the  spec¬ 
trum  bands  that  provide  the  best  opportuni¬ 
ty  for  global  use  from  an  environmental  den¬ 
sity  perspective  and  a  regulatory  perspective. 
This  can  only  be  accomplished  through  the 
robust  modeling  and  simulation  of  the  elec¬ 
tromagnetic  environment  that  is  envisioned 
in  GEMSIS.  Once  the  environment  is 
defined,  then  the  new  DSA  equipment  must 
be  supported  through  policy  agreements 
both  internationally  and  nationally.  Accom¬ 
plishing  DSA-enabled  networks  is  no  small 
task  and  will  require  close  parmership  with 
industry  and  the  DoD. 

DSA-enabled  networks  can  provide  war¬ 
fighters  with  improved  net-centric  perfor¬ 
mance  globally.  By  integrating  DSA  with  the 
other  elements  of  DoD  spectrum  transfor¬ 
mation  assured  spectrum  access  will  enhance 
battlefield  management  of  the  electromag¬ 
netic  environment  and  improve  military 
operations  in  the  net-centric  environment.^ 
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Trusting  the  Team:  Identity  Protection  and  Management 

Defense-Wide  Information  Assurance  Program 

Identity  protection  and  management  is  at  the  heart  of  establishing  and  maintaining  a  secure  and  interoperable  infrastructure. 

We  must  be  able  to  trust  the  identity  of  information  producers,  service  providers,  and  consumers  of  the  information  and  ser¬ 
vices.  The  article  highlights  the  Department  of  Defense's  (DoD's) primary  initiatives  in  this  area. 


Information  superiority  is  heavily 
dependent  on  establishing  and  main¬ 
taining  a  secure  and  interoperable  infra¬ 
structure.  At  the  heart  of  it  all  is  identity 
protection  and  management.  We  must  be 
able  to  trust  the  identity  of  information 
producers,  service  providers,  and  con¬ 
sumers.  In  pursuing  these  objectives, 
many  goals  over  the  past  15  years  have 
been  achieved,  primarily  through  the 
efforts  of  three  DoD  initiatives:  Com¬ 
mon  Access  Card  (CAC),  Public  Key 
Infrastructure  (PKI),  and  biometrics. 

The  CAC  provides  the  standard  iden¬ 
tification  card  for  authorized  DoD  users 
—  the  DoD  credential  enabling  physical 
and  logical  access.  The  DoD  has  issued 
more  than  1 1  million  identity  cards 
(more  than  3.5  million  are  in  current  cir¬ 
culation).  Use  of  the  CAC  and  the  PKI 
certificates  on  the  token  eliminates  the 
need  to  use  passwords  when  authenticat¬ 
ing.  This  mitigates  a  major  problem  with 
protecting  DoD  networks  from  unau¬ 
thorized  intruders. 

In  addition  to  improving  the  security 
of  our  networks,  the  CAC,  with  its  PKI 
credentials,  is  also  accelerating  our 
migration  to  the  Web.  By  allowing  the 
use  of  digital  signatures  in  systems  like 
the  Defense  Travel  System,  labor-inten¬ 
sive  paper  processes  are  being  eliminat¬ 
ed.  The  CAC  also  provides  the  means  to 
improve  physical  access  security  at  DoD 
installations  around  the  world.  When  a 
base  or  a  theater  of  operations  imple¬ 
ments  rapid  electronic  authentication, 
hundreds  of  fake  identification  cards  are 
confiscated  every  week  and  unauthorized 
accesses  are  prevented  (more  than  a  mil¬ 
lion  in  Europe  alone  in  just  one  year). 
Our  DoD  CAC  initiative  is  one  of  the 
most  award-winning  and  successful 
smart  card  efforts  in  the  world. 

PKI  utilizes  a  combination  of  soft¬ 
ware,  encryption  technologies,  and  ser¬ 
vices  that  enable  enterprises  to  protect 
their  communications  and  business 
transactions  on  networks.  PKI  integrates 
digital  certificates,  public-key  cryptogra¬ 
phy,  and  certificate  authorities  into  a  total 
enterprise-wide  network  security  archi¬ 


tecture.  The  DoD  has  initiated  one  of 
the  largest  PKI  implementations  in  the 
world  with  more  than  20  million  certifi¬ 
cates  issued  across  the  DoD.  Since  the 
mandate  to  move  to  cryptographic  log-in 
on  our  networks,  the  DoD  reduced  suc¬ 
cessful  intrusions  into  its  networks  by  46 
percent. 

Biometrics  provide  a  measurable 
identity  factor  that  can  be  bound  to  an 
electronic  identity  for  use  during  authen¬ 
tication.  Measurable  physiological  or 
behavioral  characteristics  —  including  fin¬ 
gerprints,  iris  recognition,  voice  analysis, 
and  handwriting  dynamics  —  can  be  used 
to  validate  an  established  identity.  In 
2006,  the  Deputy  Secretary  of  Defense 
established  the  defense  research  and 
engineering  as  the  Principal  Staff 
Assistant  for  Biometrics  and  the  Army 
established  the  Biometrics  Task  Force  to 
lead,  consolidate,  and  coordinate  all  bio¬ 
metric  information  assurance  activities 
and  ensure  biometrics  technologies  are 
integrated  across  DoD.  Every  day  in  Iraq 
and  other  area  of  responsibility  sites, 
biometrics  of  visitors  and  workers  are 
being  checked  against  terrorist  watch 
lists  and  Red  Force  databases.  We  are 
detaining  people  whose  fingerprints  were 
left  behind  on  improvised  explosive 
devices  and  denying  access  to  those  indi¬ 
viduals  on  these  watch  lists. 

To  align  the  efforts  of  these  three 
program  offices  into  one  coordinated 
venture  across  the  DoD,  the  Identity 
Protection  and  Management  Senior 
Coordinating  Group  (IPMSCG)  was 
established  in  January  2004.  The  IPM¬ 
SCG  oversees  DoD  policy,  strategy,  and 
capability  implementation  and  has  devel¬ 
oped  the  DoD  Road  Map  to  Identity 
Superiority.  Also  critical  in  the  Global 
War  on  Terror  is  the  need  to  align  these 
DoD  efforts  with  similar  initiatives  with¬ 
in  the  federal  government,  law  enforce¬ 
ment  agencies,  state  and  local  govern¬ 
ments,  and  allied  coalition  forces. 

Homeland  Security  Presidential 
Directive  No.  12  <www.whitehouse. 
gov/ news /releases/08/20040827-8. 
html>  establishes  the  framework  for  a 


common  identification  standard  for  all 
federal  government  employees  and  con¬ 
tractors.  The  standards-based  credential 
will  facilitate  electronically  validated 
entry  to  federal  facilities  and  electronic 
credential-based  authentication  to  virtual 
spaces,  enabling  more  secure  informa¬ 
tion  sharing  within  the  federal  govern¬ 
ment.  To  meet  these  requirements,  the 
DoD’s  pursuit  of  next-generation  identi¬ 
ty-based  technologies,  standards,  and 
processes  must  include  such  key  ele¬ 
ments  as  the  following:  identity  proofing, 
credentialing,  directory  services,  authen¬ 
tication,  authorization,  privacy,  and  a 
tighter  link  between  the  identity  proofing 
and  credentialing  processes. 

Identity  Superiority 

As  detailed  in  the  DoD  Road  Map  to 
Identity  Superiority,  the  success  of  the 
DoD’s  approach  to  identity  management 
is  crucial  if  we  are  to  advance  to  a  broad¬ 
er,  next-generation  identity  protection 
and  management  capability  or  identity 
superiority.  Identity  superiority  will 
enable  secure,  integrated,  interoperable,  and 
scalable  information  sharing  solutions  for  peo¬ 
ple,  systems,  and  services  in  a  net-centric 
warfare  environment.  In  implementing 
the  DoD’s  approach  to  identity  superior¬ 
ity,  a  number  of  initiatives  that  take 
advantage  of  CAC,  PKI,  and  biometrics 
are  under  way: 

•  Mandated  use  of  the  CAC  to  log-on 
to  DoD  networks  decreases  the  use 
of  passwords,  significantly  decreasing 
successful  DoD  network  intrusions 
by  46  percent  and  socially  engineered 
email  attacks  by  30  percent. 

•  DoD  Interoperability  Root  Certifi¬ 
cate  Authority  is  being  established 
(^March  2007)  as  a  first  step  in 
enabling  the  DoD  to  have  the  ability 
to  successfully  interoperate  with  non- 
DoD  entities  (on  a  limited  basis). 

•  Automated  Biometric  Identification 
System  is  currently  a  repository  of 
Red  Force  biometrics  data.  This  data 
is  used  in  identifying  potential  nation¬ 
al  security  threats. 

There  is  still  significant  work  that  needs 
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to  be  done.  Achieving  identity  superiority 
requires  more  than  the  efforts  of  the  three 
program  offices.  Actions  required  to 
achieve  identity  superiority  include  align¬ 
ing  initiatives  under  way  in  each  of  the 
three  program  offices,  expanding  the 
focus  to  accommodate  the  continually 
evolving  warfighting  environment,  and 
identifying  additional  enabling  processes 
and  technologies  that  are  needed  but  not 
yet  supported.  Identity  is  key  to  being  able 
to  take  fuU  advantage  of  the  power  of  the 
Internet. 

With  a  well-defined  and  trusted  identi¬ 
ty  management  architecture,  the  DoD  can 
evolve  its  current  access  control  model  to 
where  consumers  with  authorized  creden¬ 
tials  can  access  information  without  hav¬ 
ing  to  pre-register  with  the  information 
provider.  For  this  evolution,  the  DoD  is 
pursuing  the  concept  of  Attribute  Based 
Access  Control;  where  policy-based,  fine¬ 
grained  access  control  processes  use  vali¬ 
dated  attributes  to  authenticate  users  and 
devices  and  make  authorization  decisions. 
Attributes  are  qualities  or  characteristics 
inherent  in  or  ascribed  to  an  identity 
(human  or  device)  such  as  mission,  func¬ 


tion,  area  of  interest,  name,  rank,  role,  cit¬ 
izenship,  location,  or  organization.  This  is 
the  new  direction  of  authorization  needed 
for  information  sharing.  It  is  the  combina¬ 
tion  of  identity^  knowing  who  you  are,  and 
information  release  —  knowing  who  can  see  a 
piece  of  information.  Authorization  is  the 
process  that  joins  these  two  pieces  of 
knowledge  together. 


The  DoD  has  long  emphasized  using 
state-of-the-art  technology  to  secure  and 
protect  its  most  vital  assets:  people,  informa¬ 
tion,  and  equipment.  Our  quest  for  identity 
protection  and  management  or  identity  supe¬ 
riority  will  continue  that  tradition  and  pro¬ 
vide  our  warfighters  and  supporting  work¬ 
force  with  the  enabling  technology  and  tools 
necessary  for  tomorrow’s  challenge s.^ 


About  Defense- Wide  Information  Assurance  Program 

This  article  was  a  combined  effort  of  several  members  of  the  Defense-Wide 
Information  Assurance  Program  (DIAP).  The  DIAP  is  within  the  Information 
Assurance  Policy  Directorate  of  the  Office  of  the  Assistant  Secretary  of  Defense  for 
Networks  and  Information  Integration  (OASD  [Nil])  DoD  Chief  Information 
Officer  (CIO)  and  is  responsible  to  the  ASD  (Nil)  DoD  CIO  for  ensuring 
Information  Assurance  (lA)  is  pursued  and  implemented  throughout  the  DoD,  as  well 
as  the  intelligence  community,  as  a  critical  operational  readiness  issue.  The  DIAP 
Office  coordinates,  integrates,  and  oversees  lA  processes  of  the  DoD  and  is  the  cen¬ 
tral  focal  point  for  organizing  and  marshalling  the  resources  to  execute  its  mission. 
The  program’s  operations  are  focused  on  linking  and  integrating  lA  management  into 
the  DoD  planning,  programming,  budgeting,  and  execution  process;  the  requirements 
generation  process,  the  acquisition  process,  and  readiness  reporting  process.  More 
information  on  the  DIAP  can  be  found  at  <www.defenselink.mil/cio-nii/infoass 
urance  /  diap  /  index.html> . 
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Thanks  to  everyone  who  participated  at  SSTC 
2007  in  Tampa  Bay,  Florida! 

Proceedings  will  be  posted  online  by  mid-July 


SSTC  continues  to  be  the  great  Department  of  Defense 
(DoD)  event youjdon't  want  to  miss 


;^Watch  the  web  for  upcoming  info  and  announcement 
of  location  and  dates  for  SSTC  2008 
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Communicating  on  the  Move:  Mobile  Ad-Hoc  Networks 

Robert  F.  Dillingham  Dean  Nathans 

SRA  International,  Inc.  of  Secretary  of  Defense 

Mobile  Md-Hoc  Networks  (MANET)  is  wireless  networking  that  continually  re-organi^es  itself  in  response  to  its  envi¬ 
ronment  without  benefit  of  a  pre-existing  infrastructure.  A  MANET  is  comprised  of  a  set  of  mobile  participants  who  must 
communicate,  collaborate,  and  interact  in  order  to  complete  an  assigned  mission.  The  challenges  of  ATANET  are  to  provide 
wireless,  high-capacity,  secure,  and  networked  connectivity.  Participants  must  communicate  using  bandwidth  limited  wireless 
links,  with  potential  intermittent  connectivity,  as  compared  to  stable  wired  links  and  infrastructure.  MANET  is  a  key 
enabler  for  achieving  the  goals  of  net-centric  operations  and  warfare,  provides  the  right  information  at  the  right  place  at  the 
right  time,  and  shortens  the  kill  chain  by  extending  the  Global  Information  Grid  (GIG)  to  the  tactical  edge. 


The  Internet  is  dominated  by  wired  net¬ 
work  technologies  in  which  dedicated 
devices  perform  the  task  of  forwarding 
data  from  source  to  sink.  Wireless  attach¬ 
ments  to  the  network  are  handled  through 
fixed  access  points  that  convert  wireless 
data  to  wired  data  and  vice  versa.  The 
GIG  expands  on  the  Internet  architecture 
with  the  addition  of  airborne  wireless,  as 
well  as  space-based  components  in  its 
transport  layer.  Both  networks  employ  the 
Internet  Protocol  (IP)  suite. 

Military  MANET  must  accommodate 
a  diverse  mix  of  deployed  units,  platforms, 
and  systems  with  critical  communications 
needs,  often  in  adverse  environments.  At 
times,  operation  may  be  autonomous  or 
connections  may  be  through  the  space  or 
wired  networks,  but  the  expectations  are 
that  networking  services  will  continue 
without  interruption.  The  entire  network 
or  portions  of  it  may  be  mobile  and  sub¬ 
ject  to  outages  or  losses  inherent  in  a  mili¬ 
tary  environment.  Therefore  in  a  MANET, 
every  node  must  be  capable  of  forwarding 
data  packets  destined  for  other  nodes. 

Figure  1:  Top  EevellMANET  Interoperability 


Forwarding  decisions  must  be  made  inde¬ 
pendently  by  every  node  based  on  some 
combination  of  function,  sensed  network 
connectivity,  and  previously  shared  routing 
information. 

MANETs  are  found  in  several  major 
developmental  military  communications 
programs;  the  most  visible  of  which  are 
the  Army’s  Future  Combat  System,  the 
Army’s  Warfighter  Information  Network 
-  Tactical  (WIN-T),  the  Joint  Tactical 
Radio  System  (JTRS)  and  space  borne 
Transformational  Communications  which 
includes  the  Transformational  Satellite 
Communications  System  and  Mobile  User 
Objective  System  programs. 

MANET 

Capabilities/Challenges 

The  challenges  of  implementing  effective 
MANETs  are  exacerbated  in  the  military 
environment.  MANETs  must  be  devel¬ 
oped  to  accommodate  numerous  and 
diverse  missions  ranging  from  formations 
of  soldiers  to  high-speed  aircraft  commu¬ 
nications.  Some  of  the  resulting  chal¬ 


lenges  of  particular  significance  in  the  mil¬ 
itary  environment  include  the  following: 

•  Interoperability.  To  be  interoperable, 
DoD  MANETs  must  be  developed 
within  a  consistent,  integrated  architec¬ 
ture,  with  defined  hierarchal  relation¬ 
ships,  network  structures,  and  GIG 
attachment  points.  The  DoD  is  devel¬ 
oping  this  interoperable  architecture 
with  various  DoD  level  and 
service /agency  efforts  defining  the 
net-centric  architecture  and  interfaces. 
At  lower  network  layers,  channel  access 
methods,  operating  frequencies,  and 
security  techniques  must  all  be  compat¬ 
ible  or  no  link  can  be  established.  At 
mid-layer  machine  to  machine  authen¬ 
tication,  routing/addressing  and  net¬ 
working  services  must  work  together 
to  implement  the  IP  suite.  At  the  high¬ 
est  networking  layers,  message  formats 
and  applications  must  all  be  compatible 
to  provide  the  user  a  comprehensible 
output.  Figure  1  illustrates  the  highest 
levels  of  interoperability  and  hints  at 
the  complexity  of  the  problem. 

•  Mobility  Support.  The  mobility 
aspect  of  MANETs  has  significant 
ramifications.  At  the  physical  layer, 
motion  places  an  additional  burden  on 
the  radio  receivers  in  the  form  of 
Doppler  shifts,  signal  outages  due  to 
body  shading  or  terrain,  range  and 
multi-path;  all  contributing  to  link 
instability.  Since  nodes  are  free  to 
move  randomly,  MANET  is  differenti¬ 
ated  from  wireless  ad  hoc  networking 
by  a  heightened  sensitivity  to  time. 

•  Discovery.  In  ad-hoc  networks,  nodes 
do  not  have  a  priori  knowledge  of  the 
network  around  them.  A  node 
(optionally)  announces  its  presence 
and  listens  to  broadcast  announce¬ 
ments  from  its  neighbors.  This  activity 
is  generally  termed  neighbor  discovery. 
The  process  of  neighbor  discovery 
must  be  continuous  (at  some  predeter- 
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mined  rate)  in  order  to  maintain  cur¬ 
rent  knowledge. 

•  Network  Management.  Many  areas 
fall  within  the  realm  of  network  man¬ 
agement  including  IP  configuration, 
security,  spectrum,  monitoring,  and 
reconfiguration  upon  loss  of  nodes. 
Minimal  configuration  and  quick 
deployment  make  ad  hoc  networks 
desirable  for  those  in  direct  military 
conflict.  There  must  be  coordination 
among  nodes  to  accomplish  network 
management,  while  the  ad-hoc  nature 
of  MANETs  makes  this  coordination 
more  difficult.  MANET  network  man¬ 
agement  schemes  must  also  be  inter¬ 
operable  with  higher  level  planning 
and  network  management  layers. 

•  Routing/Scalability.  If  we  add  the 
advantage  of  a  flawlessly  interoperable 
communications  infrastructure,  how 
big  a  MANET  is  reasonable?  It  is  well 
established  that  radio  frequency  spec¬ 
trum  available  to  MANET  is  limited, 
directly  affecting  information  transfer 
capacities.  At  a  minimum,  MANET 
must  perform  neighbor  discovery  and 
collect  extended  neighborhood  aware¬ 
ness  information  to  maintain  a  local 
picture  of  network  topology. 
Topology  sustains  routing.  The 
amount  of  network  traffic  required  to 
maintain  topology  varies  with  each 
MANET  approach  and  the  needed 
overhead  increases  as  the  number  of 
nodes  increase.  Changes  in  the 
(MANET)  network  trigger  additional 
topology  maintenance  traffic,  consum¬ 
ing  capacity.  Based  on  field  testing  and 
limited  modeling  and  simulation,  cur¬ 
rent  estimates  of  the  size  of  a 
MANET  network  generally  fall  into 
the  10  to  200  node  range.  These  num¬ 
bers  are  based  on  early  field  data  col¬ 
lected  during  Defense  Advancement 
Research  Projects  Agency,  Army,  and 
Air  Force  experimentation  augmented 
by  a  large  body  of  modeling  and  simu¬ 
lation. 

•  Security.  Security  is  a  matter  of  life 
and  death  in  combat  and  sets  the  mili¬ 
tary  apart  in  many  respects  from  the 
commercial  world.  Elements  needed 
for  security  consume  information 
capacity  and  add  both  design  and 
operational  complexity  and  cost.  For 
example,  the  basic  question  of  expo¬ 
sure.  For  a  node  to  be  discovered  it 
must  broadcast.  Therefore  it  can  be 
located,  tracked,  and  potentially  com¬ 
promised.  Covertness  is  achieved 
through  low  observable  transmission 
techniques  or  by  ceasing  to  transmit 
altogether,  both  of  which  have  adverse 


affects  on  MANET  network  aware¬ 
ness.  On  the  other  hand,  when  a  node 
is  actively  transmitting  and  receiving, 
authentication  and  data  encryption  are 
required  at  a  minimum,  impacting 
overhead  loading. 

Layered  Interaction.  Each  layer  of 
the  protocol  stack  plays  an  important 
part  in  the  overall  communications 
process  for  a  MANET.  An  effective 
MANET  solution  addresses  all  layers  of 
the  protocol  stack;  single  mechanisms 
at  particular  layers  can  mitigate  particu¬ 
lar  technical  issues  but  not  the  general 
MANET  problem  space.  Interaction 
among  network  layers  in  MANETs 
improves  overall  functionality. 


Outlook 

The  development  of  DoD  MANETs  pre¬ 
sent  significant  challenges  and  much 
development  effort  remains,  however 
solid  progress  is  being  made.  The  JTRS 
and  WIN-T  programs  have  demonstrated 
increasing  capabilities  with  early  versions 
of  their  networking  waveforms.  The 
Office  of  the  Assistant  Secretary  of 
Defense  (Networks  and  Information 
Integration)  (OASD  [Nil])  DoD  Chief 
Information  Officer  continues  to  refine 
guidance  and  direction  to  provide  a  cohe¬ 
sive  basis  for  an  interoperable  architec¬ 
ture.  This  process  will  be  a  continuing  one 
as  DoD  capitalizes  on  emerging  technolo¬ 
gy  to  improve  on  current  solutions.^ 
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Reconfiguring  to  Meet  Demands:  Software-Defined  Radio 

Dean  Nathans  Dr.  Donald  R.  Stephens 

Office  of  Secretary  of  Defense  Joint  Program  Executive  Office 

A  Software  Defined  Pwidio  (SDR)  allows  a  single  hardware  p  la  form  to  be  reconfigurable  so  that  it  can  accommodate  mul¬ 
tiple  radio  waveforms  and  be  easily  upgraded  with  software  changes.  The  Joint  Tactical  Radio  System  JTRS)  is  the 
Department  of  Defense’s  (DoD)  solution  for  a  family  of  tactical  SDRs  based  on  common  open  standards  and  architectures. 

JTRS  accommodates  legacy  and  new  mobile  ad  hoc  networking  waveforms.  Additionally,  military  Satellite  Communication, 
and  Intelligence,  Surveillance,  and  Reconnaissance  (ISR)  terminals  are  migrating  to  SDRs  to  enable  consolidation  of  multi¬ 
ple  legacy  systems  into  single  multi-band  configurations.  This  article  describes  current  military  SDR  programs,  their  challenges, 
and  the  way  ahead  for  the  DoD. 


Current  communications  systems 
have  evolved  to  meet  service  specif¬ 
ic  and  mission  specific  requirements. 
Specialized  functionality  has  resulted  in 
limitations  in  communicating  from  one 
system  to  another  resulting  in  interoper¬ 
ability  issues.  More  recent  DoD  systems 
such  as  Link-16^  have  made  large  strides 
in  providing  more  capable  and  interoper¬ 
able  data  links;  however,  the  DoD  must 
now  evolve  to  acquire  a  family  of  high 
capacity,  interoperable,  networked,  and 
affordable  radio  systems  as  part  of  the 
transport  layer  of  the  Global 
Information  Grid  (GIG). 

The  appeal  of  SDRs  is  the  ability  to 
handle  multiple  radio  communication 
protocols  on  a  single  hardware  platform 
by  means  of  programmable  hardware 
controlled  by  software.  From  a  DoD 
perspective,  the  reprogrammable  radio 
can  store  and  run  multiple  waveforms. 
Rather  than  developing  many  different 
radio  systems  operating  to  different  stan¬ 
dards,  SDRs  enable  the  DoD  to  have  a 
family  of  interoperable  radios  based  on 
common  waveforms,  standards,  and 
interfaces. 

For  the  DoD,  the  impetus  for  SDRs 
is  to  significantly  reduce  the  number  of 
different  radios  and  waveforms  in  the 
inventory.  Hand  in  hand  with  these 
reductions  is  the  elimination  of  propri¬ 
etary  or  unique  implementations,  elimi¬ 
nating  interoperability  issues.  Costs  to 
the  DoD  for  radio  systems  are  also  sig¬ 
nificantly  reduced,  and  SDRs  contribute 
to  net-centricity  by  enabling  newer  high- 
rate,  networked  waveforms. 

DoD  SDR  Programs 

Trying  to  develop  a  reduced  set  of  radios 
and  waveforms  for  the  DoD  generates 
challenges  in  itself  as  the  family  must 
accommodate  numerous  requirements 
from  each  service.  Software  flexibility 
provides  the  ability  for  operation  of 
many  waveforms  on  single  hardware 


platforms;  however,  there  are  still  many 
additional  unique  military  challenges. 
The  radios  must  be  useful  in  air,  sea,  and 
ground  applications  with  different  size, 
weight,  power,  environmental,  and  threat 
needs. 

To  develop  a  family  of  radios  useful 
to  all  services,  the  Joint  Tactical  Radio 
System  (JTRS)  Program  was  initiated  in 
1997.  Initially,  waveforms  and  crypto¬ 
graphic  applications  were  controlled  by 

^The  JPEO  is  developing 
and  implementing  a 
common  infrastructure 
across  all  domains  to 
define  a  host 
environment  that  ensures 
a  waveform  porting 
among  JTRsets.^^ 

the  JTRS  Joint  Program  Office,  and 
JTRS  hardware  development  was 
assigned  to  service  leads.  The  DoD 
recently  restructured  the  program  so  that 
all  JTRS  products  would  be  under  the 
control  of  the  Joint  Program  Executive 
Office  JTRS  (JPEO  JTRS).  JTRS  pro¬ 
grams  currently  include  Ground; 
Airborne,  Maritime,  and  Fixed  Site 
(AMF);  and  Network  Enterprise 
Domains  (NED).  The  ground  domain 
includes  ground  vehicular,  Manpack 
radio,  handheld,  and  special  applications. 
The  AMF  domain  includes  standard  air¬ 
borne,  Multifunctional  Information 
Distribution  System  -  JTRS,  and  19-inch 
rack  applications.  The  NED  includes  the 
waveforms,  gateways,  and  common  net¬ 


working  services  products  used  by  the 
other  domains.  Included  within  the 
NED  programs  are  new  networking 
waveforms  based  on  Internet  Protocol 
(IP)  standards  that  allow  interoperability 
and  include  Mobile  Ad-Hoc  Network 
(MANET)  protocols  for  operation  over 
bandwidth  constrained  and  potentially 
intermittent  wireless  links. 

The  JPEO  is  developing  and  imple¬ 
menting  a  common  infrastructure  across 
all  domains  to  define  a  host  environment 
that  ensures  waveform  porting  among 
JTR  sets.  The  hardware  domains  have 
been  partitioned  to  allow  common  core 
hardware  and  software  in  each  domain, 
which  is  then  tailored  with  additional 
modules  to  apply  to  its  unique  applica¬ 
tions.  To  ensure  waveforms  are  portable 
and  perform  as  intended,  they  go 
through  a  rigorous  certification  process 
under  the  auspices  of  the  JPEO. 

The  foundation  for  the  JTRS  family 
of  radios  is  the  Software  Communi¬ 
cations  Architecture  (SCA),  Figure  1  [1]. 
It  is  simultaneously  an  architecture 
framework,  specification,  and  guidance 
document  for  software  defined  radios 
allowing  convenient  reuse,  update,  or 
replacement  of  software.  The  JPEO 
JTRS  currently  has  over  3.5  million 
source  lines  of  SCA  compliant  code  in 
its  Information  Repository  (IR)  [2] 
developed  by  the  JTRS  community. 
When  a  new  JTRS  program  requires 
software,  the  program  developers  down¬ 
load  it  from  the  IR,  which  enhances 
interoperability  of  JTR  sets,  since  all 
instantiations  are  based  upon  the  same 
software. 

To  further  support  waveform  porta¬ 
bility  and  code  reuse,  the  SCA  specifies 
operating  system  Application  Program¬ 
ming  Interfaces  (APIs)  that  must  be  pro¬ 
vided  by  the  JTR  set’s  Real  Time 
Operating  System  (RTOS).  Labeled  the 
Application  Environment  Profile  (AEP) 
in  Figure  1,  the  SCA  specifies  a  subset  of 
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Figure  1:  SCA.  Component  Architecture 

the  Portable  Operating  System  Interface 
that  every  JTR  set  must  support  and  to 
which  each  waveform  is  limited.  In  com¬ 
bination  with  the  defined  Common 
Object  Request  Broker  Architecture 
middleware,  the  SCA  guarantees  that 
every  SCA-compliant  object  can  be  exe¬ 
cuted  upon  any  JTR  set. 

Originally,  JTRS  was  envisioned  to 
cover  the  entire  radio  spectrum. 
However,  during  the  JTRS  restructure, 
the  DoD  determined  that  satellite  com¬ 
munications  and  line-of-sight  radios 
operating  in  the  Super  High  Frequency 
(SHF)  and  the  Extremely  High 
Frequency  (EHF)  spectrum  have  a  large 
enough  set  of  distinct  features  and 
requirements  to  keep  them  separate 
from  the  JTRS  Program.  One  of  the 
largest  differences  is  the  high  throughput 
demands  of  some  of  the  SHF  and  EHF 
waveforms.  In  addition  to  JTRS,  the 
DoD  has  continued  with  a  set  of  multi¬ 
band  SHF/EHF  terminal  SDR  pro¬ 
grams  led  by  the  services.  These 
SHF/EHF  programs  invoke  the  JTRS 


SCA;  additional  collaborative  possibili¬ 
ties,  including  a  common  reference 
architecture,  are  being  pursued. 

SHF/EHF  Programs  include  the  fol¬ 
lowing: 

•  Air  Force  Family  of  Advanced 
Beyond  Line-of-Sight  Terminals. 

•  Army  High  Capacity  Communica¬ 
tions  Capability. 

•  Army  Joint  Command,  Control, 
Computers  ISR  (JC4ISR). 

•  Multi-Role  Tactical  Common  Data 
Link  Demonstration  Program. 

•  Navy  Multi-band  Terminal. 

JTRS  Enterprise  Architecture 

JTRS  is  a  family  of  radios  which  spans 
across  multi-channel,  vehicle-mounted 
radios  to  disposable,  unattended  ground 
sensors.  Although  early  expectations 
might  have  been  for  one  software  suite 
that  could  be  installed  into  any  radio,  it  is 
not  practical  to  deploy  radios  with  capa¬ 
bilities  exceeding  their  missions. 
Individual  JTR  sets  are  expected  to  reuse 
as  much  host  environment  software  as 


possible  from  the  JTRS  information 
repository,  but  are  permitted  to  integrate 
unique  implementations  of  devices  and 
services  as  long  as  the  JTRS  APIs  are 
supported.  The  set  provider’s  primary 
responsibility  is  to  meet  mission  require¬ 
ments.  Waveform  software  is  expected  to 
be  largely  consistent  across  all  JTR  sets. 

To  achieve  interoperability  and  soft¬ 
ware  reuse,  the  JTR  set  providers  are 
required  to  provide  set-to-waveform 
interfaces  that  are  consistent  across  the 
JTRS  enterprise  [3].  The  JTR  set  imple¬ 
mentations  of  components  may  be 
unique,  but  the  exposed  interfaces  to  the 
waveforms  are  standardized.  Figure  2 
shows  the  deployment  of  the  JTRS 
infrastructure. 

The  infrastructure  defines  the  host 
environment  for  all  JTRS  software  com¬ 
ponents.  A  software  component  in  an 
unattended  ground  sensor  has  exactly 
the  same  operating  system  functions,  the 
same  middleware  communication,  and 
the  same  hardware  interfaces  as  a  soft¬ 
ware  component  deployed  in  a  multi- 


Figure  2:  JPeployment  of  the  JTRS  Infrastructure 
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Figure  3:  Evolution  of  SDRs 

channel  vehicle-mounted  radio. 
Regardless  of  whether  the  software 
component  is  a  general  purpose  proces¬ 
sor,  Digital  Signal  Processor  (DSP),  or 
Field  Programmable  Gate  Array  (FPGA) 
component,  the  JTRS  infrastructure  fur¬ 
ther  defines  a  host  environment  that  is 
consistent  across  the  enterprise. 
Implementations  may  vary  due  to  the 
mission  or  size,  weight,  and  power 
requirements,  but  the  host  environment 
and  the  exposed  radio  services  and  hard¬ 
ware  interfaces  are  the  same. 

JTRS  SCA  and  Enterprise 
Architecture  Future 
Increments 

The  JTRS  infrastructure  of  Figure  2  has 
resulted  in  an  executable  and  sustainable 
deployment  model  for  the  JTRS  family 
of  radios.  The  requirements  for  the  next 
increment  of  JTRS  are  still  in  develop¬ 
ment,  so  it  is  early  to  conjecture  about 
the  feature  set  of  the  next-generation 
JTRS  infrastructure.  Because  the  infor¬ 
mation  repository  will  have  approxi¬ 
mately  four  million  lines  of  source  code 
from  JTRS  Increment  1,  it  is  probable 
that  the  future  infrastructure  must  be 
backward  compatible  with  today’s  infra¬ 
structure. 

As  additional  form  factors  are  devel¬ 
oped,  there  may  be  minor  revisions  to 
the  SCA  to  extend  the  current  architec¬ 
ture.  To  better  support  battery-powered 
missions,  there  may  be  specific  changes 
to  the  RTOS  and  middleware  specifica¬ 
tions.  In  addition.  System  on  Chip  (SOC) 
interconnection  is  becoming  increasingly 
important  and  standardization  may  be 
required  because  FPGAs  have  become 
capable  of  hosting  increased  functionali¬ 
ty  of  the  SDR. 

SDR  Challenges 

Because  of  the  complexity  of  SDRs,  sys¬ 
tems  and  software  engineering  is  more 
important  now  than  for  the  previous  gen¬ 
eration  of  radios.  Developers  in  both  the 
commercial  and  DoD  sectors  must 
ensure  sufficient  training  and  experience 
necessary  for  SDR  development  includ¬ 
ing  engineering  disciplines  of  communi¬ 


cations  systems,  radio  frequency,  digi¬ 
tal/  analog  hardware,  software,  and  digital 
signal  processing.  Complementing  a  need 
for  developer  training  is  the  requirement 
for  improved  development  and  test  tools. 
Recognizing  the  need  and  potential  mar¬ 
ketplace,  several  companies  have 
emerged  specifically  targeting  SDR  devel¬ 
opment  tools.  A  key  item  in  achieving 
waveform  reuse  is  the  use  of  compatible 
tools  with  thoroughly  documented  code. 

An  additional  challenge  for  the  SDR 
developer  is  to  design  the  architecture 
such  that  interfaces  may  be  replaced  with 
a  different  standard  at  a  future  date.  The 

**SDRs  will  be  able  to 
handle  new  networking 
waveforms,  while  also 
being  able  to  operate 
prior  legacy  waveforms 
so  that  interoperability 
can  be  maintained  as 
the  older  waveforms  ore 
phased  out/^ 


selection  of  a  set  of  open  standards 
among  many  competing  standards  is  also 
a  challenge  for  DoD  in  achieving  more 
reuse  of  hardware  and  software  among 
programs. 

Hardware  innovations  and  improve¬ 
ments  are  required  for  SDRs  to  achieve 
their  full  potential.  Greater  performance 
can  be  achieved  with  improved  analog  to 
digital  (A/D)  and  digital  to  analog  (D/A) 
converters;  reduced  power  parts,  espe¬ 
cially  FPGAs;  wider  bandwidth  and 
more  linear  amplifiers;  and  radio  fre¬ 
quency  (RF)  technology  allowing  wider 
bandwidth  operation.  For  SHF/EHF 
systems,  improvements  are  needed  to 
reduce  the  high  costs  of  the  steerable, 
directional,  antenna  systems. 

A  unique  challenge  for  DoD  is  that 


radio  life  cycles  are  three  to  10  times 
longer  than  commercial  products.  The 
life  cycle  was  less  problematic  with  hard¬ 
ware  defined  radios,  but  SDRs  utilize 
commercial  products  such  as  operating 
systems,  middleware,  and  software  devel¬ 
opment  tools.  DoD  platforms  such  as 
aircraft  carriers,  aircraft,  submarines, 
etc.,  have  very  long  life  cycles.  SDRs  rep¬ 
resent  an  opportunity  to  update  the 
communications  capabilities  in  these 
platforms  for  relatively  low  cost. 

Evolution  of  DoD  SDRs  Into 
the  Future 

SDRs  will  continue  to  play  a  larger  role 
in  allowing  military  users  to  seamlessly 
interoperate  and  provide  the  wireless 
interface  to  the  GIG.  In  addition,  SDRs 
will  help  reduce  the  total  number  of 
radios  in  the  DoD  inventory,  allow  field¬ 
ed  systems  to  be  more  easily  refreshed 
and  upgraded,  and  help  with  the  drive 
towards  a  reduced  number  of  wave¬ 
forms  and  protocols.  SDRs  will  be  able 
to  handle  new  networking  waveforms, 
while  also  being  able  to  operate  prior 
legacy  waveforms  so  that  interoperability 
can  be  maintained  as  the  older  wave¬ 
forms  are  phased  out.  The  evolution  of 
SDRs  is  shown  in  Figure  3. 

Ubiquitous  Connectivity 

The  next  increment  of  SDRs  must  con¬ 
tinue  the  paradigm  shift  from  a  communi¬ 
cations  model  of  disparate,  service-owned 
and  operated  radio  communications  to 
net-centric  warfare  by  unifying  communi¬ 
cations  resources  that  are  shared  across 
cooperating  services.  The  current  incre¬ 
ment  of  JTRS  is  evolving  the  radio  and 
networking  technologies  necessary  to  real¬ 
ize  this  vision.  Net-centric  warfare  inte¬ 
grates  mobile/ tactical  users  via  networked 
IP  and  meets  frontline  demands  for  band¬ 
width.  The  next  generation  transport 
architecture  will  include  routers  and  trans¬ 
lation  services  to  enable  meaningful  and 
seamless  connectivity  between  multiple, 
diverse  tactical  and  theater  networks  and 
satellite  resources.  SDRs  must  incorporate 
frequency  reuse  mechanisms  to  maximize 
use  of  available  spectrum. 
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Spectrally  Aware 

Frequency  bandwidth  is  required  to  sup¬ 
ply  the  warfighter  with  the  information 
needed  for  tomorrow’s  battlefield.  Unfor¬ 
tunately  there  is  a  dearth  of  unassigned 
frequency  spectrum  and  without  simulta¬ 
neous  regulatory  and  technology  break¬ 
throughs,  radio  spectrum  will  become  a 
limiting  resource  for  the  DoD.  A  poten¬ 
tial  reuse  mechanism  is  a  spectrally  aware 
radio  that  is  trusted  by  regulatory  agen¬ 
cies  to  monitor  the  frequency  spectrum 
and  only  transmit  in  unused  frequencies. 

Reduce  Costs 

The  JTRS  program  has  consolidated  mul¬ 
tiple  radio  domains  under  a  single  pro¬ 
gram  executive  office.  Through  the  use 
of  a  common  infrastructure,  the  JTRS 
JPEO  is  maximizing  reuse  of  products 
through  its  enterprise  and  correspond¬ 
ingly  reducing  development  and  procure¬ 
ment  costs.  Additionally,  a  core  set  of 
interoperable  networking  waveforms  is 
being  developed.  Currently,  the  DoD  is 
continuing  with  individually  managed 
service  multi-band  SHF/EHF  programs; 
however,  future  collaborative  possibilities 
are  being  examined.  Reuse  of  the  SCA 
and  some  of  the  JTRS  enterprise  archi¬ 
tecture  is  anticipated,  with  additions  as 
needed  to  establish  an  SHF/EHF  refer¬ 
ence  architecture. 

Waveform  Coverage  for  All 
Missions 

Communications  for  DoD  missions  vary 
from  dismounted  soldiers  in  the  canyons 
of  Afghanistan,  supersonic  aircraft,  unat¬ 
tended  ground  sensors  in  the  tropics,  to 
conventional  office  environments. 
Although  one  waveform  for  all  communi¬ 
cations  would  be  desirable,  it  is  as  imprac¬ 
tical  as  expecting  that  all  DoD  transporta¬ 
tion  needs  can  be  served  with  a  single 
vehicle.  The  next  increment  of  SDRs  will 
provide  coverage  of  all  DoD  communica¬ 
tion  needs  with  fewer  waveforms. 

Outlook 

The  development  and  use  of  SDRs  is  a 
key  enabler  for  DoD  in  achieving  a  fami¬ 
ly  of  interoperable  radios  based  on  com¬ 
mon  waveforms,  standards,  and  inter¬ 
faces,  with  enhanced  portability  and 
reusability.  While  there  have  been  signifi¬ 
cant  developmental  challenges,  the  DoD 
SDR  programs  have  made  good 
progress,  with  prototypes  available  and 
being  tested  in  the  field  for  several  JTRS 
and  SHF/EHF  programs.  As  users  gain 
familiarity  and  experience  with  these 
radios,  their  transformational  communi¬ 


cations  capabilities  will  become  evident. 
The  reprogrammable  SDR  will  allow  fur¬ 
ther  evolution  to  additional  advanced 
capabilities  building  upon  the  current 
programs.^ 
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Note 

1.  Link- 16  is  a  secure  near  real-time  situ¬ 
ational  awareness  and  command/ con¬ 
trol  data  link  used  on  the  Joint  Tactical 
Information  Distribution  System  and 
Multifunctional  Information  Distribu¬ 
tion  System  Terminals  of  the  United 
States  and  North  Atlantic  Treaty 
Organization  allies. 
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Sharing  Information  Today:  Maritime  Domain  Awareness 

Michael  Todd 
Defense  Information  Systems  A.gency 

In  a  world  where  unforeseen  human  or  natural  disasters  (i.e.,  U.S.S.  Cole,  September  1 1 ,  Hurricane  Katrina,  the  2004  Indian 
Ocean  tsunami,  and  the  possibility  of  an  avian  flu  pandemic)  may  occur,  interagency  information  sharing  and  collaboration  is 
essential  to  mitigating  effects  of  these  types  of  catastrophic  events.  The  Maritime  Domain  Awareness  Data  Sharing  Community 
of  Interest  (MDA  DS  COT)  pilot  demonstrated  a  net-centric  data  sharing  capability  as  a  first  step  towards  addressing  the  com¬ 
mon  challenge  of  global  identification  and  tracking  of  maritime  vessels,  cargo,  and  crew  usage  of  existing  information  sources  to 
better  secure  our  coasts,  ports,  and  waterways.  This  Department  of  Defense  (DoD),  Department  of  Homeland  Security  (DHS), 
and  Department  of  Transportation  (DOT)  partnership  developed  capabilities  to  expose  maritime  data  as  a  consumable  Web- 
enabled  service  to  authoric^d,  unanticipated  users  employing  community-based  agreements  defining  a  common  vocabulary  and 
data  sharing  services.  This  COI  pilot  also  leveraged  enterprise  services  resulting  in  a  repeatable  process,  an  extensible  vocabu¬ 
lary,  and  reusable  services  available  for  developing  responsive,  agile  solutions  for  any  number  of  data  sharing  challenges. 


The  MDA  DS  COI  pilot  demonstrated 
the  capability  for  three  federal  depart¬ 
ments  (DoD,  DHS,  and  DoT)  to  share 
maritime  vessel  tracking  data  so  that  ana¬ 
lysts  and  policing  officials  in  all  three 
departments  will  have  the  ability  to  exploit 
information  they  did  not  previously  have. 
This  mission  is  in  direct  response  to  objec¬ 
tives  framed  by  the  National  Security 
Presidential  Directive  41  and  Homeland 
Security  Presidential  Directive  13  to 
improve  maritime  domain  awareness  of 
global  threats  to  national  and  maritime 
security. 

The  MDA  DS  COI  pilot  also  addressed 
information  sharing  objectives  identified  in 
the  2006  Quadrennial  Defense  Review 
(QDR),  institutionalizing  the  ongoing 
transformation  of  the  DoD.  Specifically,  it 
identified  the  approach  taken  to  meet  the 
National  Defense  Strategy  requirement  to 
enable  net-centric  operations.  Section  three 
of  the  document  discussed  the  reorienta¬ 
tion  of  capabilities  and  forces  and  identi¬ 
fied  actions  to  be  taken  to  achieve  net-cen- 
tricity.  That  is,  access  to  information, 
information  sharing,  and  collaboration 
among  those  who  need  it.  The  QDR 
specifically  requires  the  DoD  to  strengthen 
its  data  strategy. 

The  DoD  Net-Centric  Data  Strategy 
establishes  the  policy  approach  to  ensure 
information  can  be  shared  across  the  enter¬ 
prise  in  a  trusted  and  timely  manner. 
Implementation  is  well  under  way.  Today,  it 
delivers  capability  as  part  of  pilot  initiatives 
developed  by  communities  with  specific 
information  sharing  needs.  A  net-centric 
COI  develops  capabilities  to  expose  data  as 
a  consumable,  Web-enabled  service  to 
authori^d  unanticipated  users  employing  commu¬ 
nity-based  agreements  defining  a  data  sharing 
vocabulary  and  services.  The  community-based 


agreements  and  their  descriptions  are  pub¬ 
lished  to  discoverable  registries  where 
known  and  unanticipated  authorized  users 
may  adopt  or  extend  the  agreements  to 
meet  additional  mission-related  data  shar¬ 
ing  requirements. 

The  MDA  DS  COI  pilot  addressed  the 
cultural  and  technical  challenges  for  multi¬ 
ple  federal  departments  to  come  to  agree¬ 
ments  on  how  to  improve  awareness  of 
potential  security  or  defense  related  threats 
from  maritime  vessels,  cargo,  or  crews.  The 
cultural  challenge  focused  on  the  need  for 
data  producers  to  share  data  with  users 
with  a  right  to  use  the  data.  This  replaces 
the  previous  need-to-know  paradigm  that 
mitigated  data  being  discovered  and  used 
by  authorized  unanticipated  users.  The  cul¬ 
tural  shift  places  a  priority  on  trust  and  col¬ 
laboration  in  a  risk-managed  data  sharing 
environment.  This  is  promoted  by 
Executive  Order  13388,  directing  improve¬ 
ments  for  sharing  intelligence  data  and  data 
sharing  recommendations  after  the 
September  11th  attack.  Additionally,  this 
effort  faced  the  need  for  different  federal 
departments  to  collaborate  in  defining  their 
shared  challenges,  agree  on  a  governance 
process  to  manage  the  effort,  share 
resources  needed  (in  the  middle  of  a  bud¬ 
get  year  without  prior  planning  for  this 
effort),  come  to  agreement  on  a  common 
vocabulary,  and  share  lessons  learned  as  the 
engineering  teams  developed  the  applica¬ 
tions  across  four  different  data  producer 
sites  with  different  architectures.  The  key 
here  is  the  COI  was  truly  a  community 
effort.  The  DoD  Chief  Information 
Officer  (CIO)  team  met  with  each  of  the 
primary  stakeholders  to  discuss  the  lack  of 
visibility  into  data  collected  by  other  orga¬ 
nizations  and  proposed  the  community- 
base  approach  to  develop  the  vocabulary 


agreements  and  share  in  the  engineering 
efforts.  Each  agreed  this  was  a  high  priori¬ 
ty  problem  and  that  the  proposed  COI- 
based  process  offered  an  opportunity  to 
solve  the  problem  relatively  quickly.  The 
DoD  CIO  team  made  recommendations 
based  on  an  existing  problem  each  COI 
participant  already  understood  but  had  not 
come  together  to  address  before.  Once  the 
executive  leadership  determined  this  to  be 
a  priority  effort  and  the  staff  understood 
the  strategy,  the  effort  was  enthusiastically 
supported.  DoD  CIO  team  offered  guid¬ 
ance  as  needed  but  did  not  lead  the  effort. 
The  COI  belonged  to  the  community  of 
organizations  who  would  benefit  from  the 
effort.  This  commitment  on  the  part  of  the 
COI  members  helped  to  ensure  they 
understood  the  process  and  the  benefits. 

The  technical  challenge  focused  on 
moving  from  producer-to-user  point-to- 
point  interfaces,  to  producers  posting  data, 
services,  and  their  descriptions  to  shared 
spaces  that  are  discoverable  and  accessible 
by  known  and  unanticipated  authorized 
users.  The  value  of  networks  and  therefore 
collaboration  increases  as  the  number  of 
participants  increases.  However,  in  the 
point-to-point  design  this  becomes  costly 
to  manage  and  difficult  to  evolve.  The  use 
of  shared  spaces  to  host  standard-based 
data  assets  and  services  scales  in  a  more 
cost  effective  manner,  meeting  planned  and 
unexpected  mission  needs.  In  addition  to 
using  shared  spaces  to  offer  data  assets,  a 
set  of  core  enterprise  services  were  made 
available  as  well.  Offering  the  use  of  the 
DoD’s  Net-Centric  Enterprise  Services 
(NCES)  Early  Capability  Baseline  (ECB) 
release  of  enterprise  services  helped  seal 
the  agreements.  Leveraging  the  NCES 
ECBs  for  security,  messaging,  and  content 
discovery  services  meant  the  different 
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organizations  did  not  have  to  reinvent 
these  capabilities  duplicating  the  cost,  time, 
and  risk.  It  also  meant  that  all  were  inter¬ 
operable  and  could  use  common  interface 
standards.  The  key  here  is  the  pilot  devel¬ 
opment  and  demonstration  proved  in  real 
terms  that  reuse  of  enterprise  services  can 
work  across  technical  and  organizational 
domains. 

The  MDA  DS  COI  was  formed  as  a 
cross-functional  and  organizationally 
diverse  community  that  was  experiencing  a 
data  sharing  problem.  The  COI  defined  the 
problem  as  a  single  statement  and  identi¬ 
fied  a  limited  number  of  data  sources  to 
expose  as  a  consumable  service  for  the  ini¬ 
tial  pilot.  The  initial  effort  was  scoped  for  a 
nine-to- 12-month  effort  to  rapidly  develop 
the  needed  capability.  The  community 
adopted  existing  data  standards  in  the 
development  of  semantic  and  structural 
agreements  (extensible  metadata  schemas) 
to  facilitate  the  understanding  of  the  data 
by  human  or  machine  data  users. 
Application-level  services  were  developed 
using  this  community  vocabulary  to  Web- 
enable  legacy  capabilities  and  commercial 
browsers  to  make  the  data  visible  and 
accessible  in  a  trusted  data  sharing  environ¬ 
ment.  Foundation  level  services  adopted 
existing  enterprise  services  from  the  DoD’s 
NCES  ECB,  and  the  DHS’s  Homeland 
Security  Information  Network  (HSIN). 
These  enterprise  services  are  designed  for 
reuse  across  the  respective  enterprise,  miti¬ 
gating  duplicative  investments  and  reduc¬ 
ing  individual  program  risk,  while  enabling 
consistent  performance  similar  to  a  public 
utility  in  the  commercial  sense. 

The  MDA  DS  COI  documented  the 
pilot  effort  as  a  repeatable  process  that 
resulted  in  successful  demonstrations  of 
the  discovery  and  access  to  data  from  four 
functionally  and  geographically  separate 
data  producers  within  eight  months.  The 
repeatable  process  continues  to  evolve  as  it 
is  shared  with  other  COIs  and  in  follow-on 
spirals  for  the  MDA  DS  COI.  The  docu¬ 
mented  process  and  lessons  learned  are 
being  consolidated  and  will  be  posted  for 
additional  use.  The  strategy  is  simple: 

1.  Define  a  data  sharing  problem  among 
an  operational  community. 

2.  Gain  leadership  support  and  staff  buy- 
in  for  the  means  of  solving  the  prob¬ 
lem  as  a  community. 

3.  Develop  the  semantic  and  structural 
agreements  for  a  common  vocabulary 
all  will  agree  on  as  the  means  of  under¬ 
standing  and  exchanging  the  data, 
(avoid  selecting  more  than  a  dozen  data 
sources  to  manage  the  risk  and  scope  of 
the  effort). 

4.  Adopt  existing  services  as  the  technical 


means  of  sharing  the  data  are  devel¬ 
oped. 

5.  Buy  or  create  the  services  needed  if  no 
partial  or  complete  services  already 
exist. 

6.  Register  the  vocabulary  and  services  in 
enterprise  visible  and  accessible  reg¬ 
istries  for  follow-on  use. 

7.  Demonstrate  the  working  capability 
and  market  as  a  risk  reduction  for  pro¬ 
grams  associated  with  sharing  the  same 
types  of  data,  (this  works  even  better  if 
those  programs  participate  in  the  pilot 
deriving  direct  benefit  from  the  effort). 

8.  Document  all  of  the  lessons  in  the 
process  for  future  use  by  this  and  other 
teams. 

9.  Post  assets  for  general  discovery,  under¬ 
standing,  and  use  (vocabulary,  services, 
repeatable  process). 

The  execution  of  a  successful  pilot  like 
this  requires  a  strong,  cooperative  team  and 
committed  leadership  support.  This  eight- 
month  effort  took  between  60  and  90  days 
to  develop  the  agreements  on  the  problem 
set,  resources  needed,  vocabulary  and 
schema  development,  and  the  services 
needed.  The  development  of  Web-services 
leveraging  the  NCES  ECBs  and  the  HSIN 
became  progressively  easier,  taking  far  less 
time  with  each  subsequent  implementation 
across  the  four  data  producer  sites 
involved.  Milestones  were  measured  in  days 
and  weeks  rather  than  months  and  years 
overall.  As  was  stated  before,  the  MDA  DS 
COI  team  was  enthusiastic  in  the  pursuit  of 
their  goals  sharing  a  clear  understanding  of 
the  importance  and  benefits  of  working 
together  as  a  team.  Obstacles  such  as 
parochial  ownership  of  needed  assets  were 
resolved  quickly  and  the  team  was  able  to 
deliver. 

The  piloted  capability  demonstrated  is 
available  for  limited  use  at  this  time.  The 
pilot  leveraged  an  early  release  of  the 
NCES  program  that  is  under  development. 
This  in  turn  proved  the  value  of  the  NCES 
effort  to  deliver  a  service-based  infrastruc¬ 
ture  for  reuse  by  DoD  and  other  depart¬ 
ments.  As  COIs  apply  the  rapid  develop¬ 
ment  cycles  and  continue  producing  more 
user  services  and  the  NCES  infrastructure 
adds  more  robust  capabilities,  this  will  be 
made  available  to  a  broader  user  communi¬ 
ty.  Currently,  the  NCES  program  is 
approved  for  a  limited  operational  support 
while  developing  at  a  rapid  pace.  The  MDA 
DS  COI  and  others  are  signing  up  to 
extend  the  initial  success  cited  here  imple¬ 
menting  the  Net- Centric  Data  Strategy  and 
leveraging  NCES  (which  increases  the 
value  of  the  NCES  investment  while 
reducing  the  cost  to  the  DoD  overall). 
Engineering  lessons  learned  by  the  COIs 


are  fed  back  into  the  NCES  effort,  provid¬ 
ing  further  user  guidance  for  the  evolution 
of  this  enterprise  program. 

The  demonstration  allows  a  user  to 
define  their  operational  picture  in  near  real 
time  using  live  data  feeds.  The  new  MDA 
DS  COI  data  sharing  capability  is  a  first  step 
towards  addressing  the  common  challenge 
of  global  identification  and  tracking  of  mar¬ 
itime  vessels,  cargo,  and  crew  using  existing 
information  sources  to  better  secure  our 
coasts,  ports,  and  waterways.  The  successful 
eight-month  pilot  demonstrated  proof  of 
the  DoD  Net- Centric  Data  Strategy  and 
implementation  of  an  enterprise  service- 
based  architecture.  COI  members  are  study¬ 
ing  means  of  applying  the  extensible  data 
sharing  capability  in  future  spiral  deliveries 
of  operational  programs  supporting  opera¬ 
tional  missions.  The  community  is  also 
exploring  additional  data  sharing  priorities 
to  further  improve  global  maritime  domain 
awareness  supporting  the  national  defense 
and  homeland  security  missions  of  the 
DoD,  DHS,  and  DOT. 

In  a  world  where  unforeseen  human  or 
natural  disasters  (i.e.,  U.S.S.  Cole  attack, 
September  11,  Hurricane  Katrina,  and  the 
2004  Indian  Ocean  tsunami),  may  occur, 
this  means  of  improving  responsiveness 
and  ability  to  develop  solutions  for  data 
sharing  needs  is  a  critical  solution  for  any 
number  of  data  sharing  challenges.^ 
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Where  it's  needed.  When  it's  needed. 
To  those  who  need  it  most 


Defense  transformation  hinges  on  the  recognition 
that  information  is  our  greatest  source  of  power. 
Information  can  be  leveraged  to  allow  decision  mak¬ 
ers  at  all  levels  to  make  better  decisions  faster  and 
act  sooner.  Ensuring  timely  and  trusted  information 
is  available  where  it  is  needed,  when  it  is  needed,  and 
to  those  who  need  it  most  is  at  the  heart  of  the  capa¬ 
bility  needed  to  conduct  Network-Centric 
Operations  (NCO). 

Becoming  Net  Centric  requires  people,  processes, 
and  technology  to  work  together  to  enable  timely: 

•  access  to  information, 

•  sharing  of  information,  and 

•  collaboration  among  those  involved.  Instead  of 
“pushing  information  out”  based  on  individually 
engineered  and  predetermined  interfaces,  Net- 
Centricity  ensures  that  a  user  at  any  level  can  both 
“take  what  he  needs”  and  “contribute  what  he 
knows.” 

The  Net-Centric  Data  Strategy  meets  this  chal¬ 
lenge  by  focusing  on  data,  rather  than  on  the  propri¬ 
etary  applications  and  programs  that  manipulate  it 
(the  current  focus).  Those  at  the  source  of  the  data 
will  be  required  to  make  it  easy  to  find  and  use.  It 
must  be: 

•  visible, 

•  accessible,  and 

•  understandable. 

Communities  of  Interest  (COI)  are  collaborative 
groups  of  users  who  must  have  a  shared  vocabulary 
to  exchange  information.  Data  characteristics  and 
content  will  be  “tagged”  in  an  agreed-to  manner. 
The  communities  will  range  from  pre-established 
groups  with  ongoing  arrangements,  to 
Unanticipated  Users  and  non- traditional  partner¬ 
ships  that  develop  on  an  ad  hoc  basis.  Individual 
users  will  determine  and  display  content  based  on 
their  specific  needs.  User  Defined  Operating 
Pictures  (UDOPs),  rather  than  in  rigid  or  pre¬ 
determined  formats. 


Information  Assurance,  the  greatest  Enterprise 
challenge,  is  the  basis  for  trust:  trust  in  the  system’s 
availability,  the  participants’  identities,  and  the  data’s 
dependability  and  integrity.  Today  firewalls  and  soft¬ 
ware  patches  attempt  to  keep  intruders  out  and  data 
safe.  Tomorrow’s  assured  information  will  require 
that  the  individual  data  be  secured  throughout  its 
useful  lifespan. 

The  Global  Information  Grid  (GIG)  will  enable 
Network-Centric  Operations  and  collects,  processes, 
stores  and  manages  the  Enterprise  data.  The  GIG  is 
not  just  a  technological  backbone.  It  includes: 

•  people, 

•  process,  and 

•  technology. 

The  GIG  enables  “information  on  demand.” 

The  DoD  Chief  Information  Officer  (CIO)  pro¬ 
vides  the  leadership  to  meet  the  Net-Centric  vision 
and  ultimately  deliver  the  critical  enabling  capabilities 
required  by  the  National  Defense  Strategy. 
Transforming  to  a  Network- Centric  Force  requires 
fundamental  changes  in  process,  policy,  and  culture 
across  the  Department  (defense  operations,  intelli¬ 
gence  functions,  and  business  processes). 

The  technological  change  wiU  be  significant,  but  the 
cultural  shift  may  be  even  more  challenging.  The 
hallmark  of  the  21st  century  is  uncertainty.  Net- 
Centricity  is  rooted  in  a  simple  principle:  Confront 
uncertainty  with  agility.  To  be  agile,  data  can  no 
longer  be  “owned”;  it  must  be  shared. 

Timely  and  dependable  information  will  be  available 
across  the  Enterprise:  from  higher  level  headquarters 
and  command  centers,  to  a  soldier  in  the  city  track¬ 
ing  insurgents,  or  a  civilian  in  need  of  a  new  suppli¬ 
er.  Ultimately,  Net-Centricity  means  Power  to  the 
Edge. 
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Net-Centric  Virtuosity 


BackTalk 


If  you  traveled  through  the  L’Enfant  Plaza  Metrorail 
Station  in  Washington  D.C,  on  January  12,  2007  between 
7:51  and  8:32  a.m.,  you  may  —  or  may  not  —  have  witnessed  a 
rare  treat.  A  street  musician  —  not  an  ordinary  musician  — 
Joshua  Bell;  recognized  as  the  nation’s  best  classical  musician. 
He  stood  next  to  a  garbage  can  in  jeans,  a  long-sleeved  t-shirt 
and  a  Nat’s  baseball  cap  and  performed  six  pre-eminent  clas¬ 
sical  pieces  on  a  %3  million  violin  handcrafted  in  1713  by 
Antonio  Stradivari. 

What  many  pay  thousands  of  dollars  to  hear  was  free.  The 
Washington  Post  arranged  the  performance  as  an  experiment 
on  context,  perception,  and  priorities. 

In  43  minutes,  1,097  people  passed  by  the  artist.  Seven 
stopped  for  at  least  a  minute,  27  gave  money  totaling  $32.17, 
and  1,070  dashed  by  in  oblivion.  Gene  Weingarten  covered 
the  event  in  a  copious  Washington  Post  article  [1]  including 
video  clips  on  the  Post's  Wch  site  [2]. 

The  scene  conjures  up  Churchill’s  observation,  ‘‘Men 
occasionally  stumble  on  the  truth,  but  most  of  them  pick 
themselves  up  and  hurry  off  as  if  nothing  had  happened.” 

L’Enfant  Plaza’s  coffee-toting,  iPod-packing,  serenity- 
scorning,  deadline-chasing  commuters  resemble  Net-cen¬ 
tric’s  cell  phone-toting,  PowerPoint-packing,  stovepipe- 
scorning,  technology-chasing  bureaucrats.  Chances  are  they 
are  one  in  the  same:  both  justifiably  busy,  yet  void  of  context, 
perspective,  and  priority.  Still,  within  the  crowds  we  find 
insight. 

On  his  daily  commute  from  Reston,  John  David 
Mortensen  got  off  the  escalator,  located  the  violinist, 
checked  the  time,  settled  against  a  wall,  and  listened  for  three 
minutes. 

“Whatever  it  was,”  he  said,  “it  made  me  feel  peace.” 

For  the  first  time  in  his  life,  sensing  something  special, 
Mortensen  gave  money  to  a  street  musician.  Net-centric 
stakeholders  can  learn  from  him.  Amid  the  hustle,  hype,  and 
technical  jargon  take  time  to  listen,  dig  below  the  surface,  and 
confirm  results  before  spending  your  money. 

Sheron  Parker  and  her  son,  Evan,  walked  past  Joshua. 
“There  was  a  musician,”  Parker  said,  “and  my  son  was 
intrigued.  He  wanted  to  pull  over  and  listen,  but  I  was  rushed 
for  time.” 

Stepping  between  her  son  and  the  musician,  she  exited.  In 
fact,  Weingarten  reports,  “Every  single  time  a  child  walked 
past  the  musician,  he  or  she  tried  to  stop  and  watch.  And 
every  single  time,  a  parent  scooted  the  kid  away.” 

Net-centric  managers  would  be  wise  to  listen  and  culti¬ 
vate  young  engineers.  Members  of  the  first  digital  generation 
offer  unsullied  ears  for  technologies  that  work.  Don’t  scoot 
them  away. 

A  hundred  feet  away,  J.T  Tillman  bought  lottery  tickets. 
He  remembered  every  number  he  played  but  doesn’t  recall 
what  the  violinist  played.  When  told  he  was  one  of  the  best 
musicians  in  the  world,  he  laughed. 

“Is  he  ever  going  to  play  around  here  again?” 

Yes,  J.T,  but  the  price  will  be  high  to  be  within  a  hundred 
feet  of  Joshua  Bell  again.  Despite  what  you  hear  on  the  trade 
show  floor,  there  are  no  net-centric  lotteries.  Information 


technology  history  teaches  us  that  those  who  don’t  exploit 
technology  will  pay  a  high  price  to  the  next  Apple,  Microsoft, 
or  Oracle. 

Calvin  Myint  passed  four  feet  away  from  Bell  but  heard 
nothing  over  his  iPod’s  pulsating  ear-buds.  Fixation  on  a 
technology  can  limit  our  exposure  to  new  possibilities,  expe¬ 
riences  and  insights.  Even  horse  blinders  were  state-of-the- 
art  once. 

George  Tindley  was  bussing  tables  at  a  coffee  shop  across 
from  the  station.  He  listened  to  Bell’s  playing  at  the  edge  of 
the  shop. 

“You  could  tell  in  one  second  that  this  guy  was  good,” 
Tindley  said,  “Most  people,  they  play  music;  they  don’t  feel  it 
...  that  man  was  feeling  it.” 

Remember  your  net-centric  client  —  the  warrior.  They 
need  the  right  information  at  the  right  time,  but  more  impor¬ 
tantly,  they  need  to  feel  the  context  of  the  information. 

Bell,  the  virtuoso  himself,  was  actually  nervous. 

“When  you  play  for  ticket-holders,”  Bell  explains,  “you 
are  already  validated.  Here,  what  if  they  don’t  like  me?  What 
if  they  resent  my  presence...?” 

Joshua’s  musical  talent  is  best  appreciated  in  the  optimal 
conditions  of  the  world’s  best  concert  halls.  His  music  could 
have  lost  context  within  the  chaos  of  the  metro  station. 
Likewise,  information  can  lose  context  in  the  fog  of  war. 
Net-centric  focus  should  be  more  than  interoperability,  ready 
access,  and  massive  data.  The  tip  of  the  net-centric  spear  is  a 
warrior  with  optimal  viewing  conditions. 

Louis  Pasteur  lamented,  “In  the  field  of  observation, 
chance  favors  the  prepared  mind.” 

—  Gary  A.  Petersen 

Arrowpoint  Solutions 
gpetersen@arrowpoint.us 
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Can  You  BACKTALK? 

Here  is  your  chance  to  make  your  point,  even  if  it  is  a  bit 
tongue-in-cheek,  without  your  boss  censoring  your  writing.  In 
addition  to  accepting  articles  that  relate  to  software  engineer¬ 
ing  for  publication  in  CrossTalk,  we  also  accept  articles  for 
the  BackTalk  column.  BackTalk  articles  should  provide  a 
concise,  clever,  humorous,  and  insightful  perspective  on  the 
software  engineering  profession  or  industry  or  a  portion  of  it. 
Your  BackTalk  article  should  be  entertaining  and  clever  or 
original  in  concept,  design,  or  delivery.  The  length  should  not 
exceed  750  words. 

For  a  complete  author’s  packet  detailing  how  to  submit 
your  BackTalk  article,  visit  our  Web  site  at 
<www.stsc.hill.af.mil>. 
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Vision 

Deliver  the 
Power  of 
Information 

An  agile  enterprise 
empowered  by  access  to 
and  sharing  of  timely  and 
trusted  information 


Mission 

Enable 

Net-Centric 

Operations 

Lead  the  Information  Age 
transformation  that  enhances 
the  Department  of  Defense's 
efficiency  and  effectiveness 


Goals 

Information  on  Demand 

-  Build  the  Net 

-  Populate  the  Net 

-  Operate  the  Net 

-  Protect  the  Net 
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